ELSA-2018-1932

Affecting zsh-html package, versions oracle:6: <0:4.3.11-8.el6

medium severity
Do your applications use this vulnerable package? Test your applications

Overview

[4.3.11-8] - fix defects detected by Coverity related to CVE-2017-18206 and CVE-2018-1083 [4.3.11-7] - fix stack-based buffer overflow in utils.c:checkmailpath() (CVE-2018-1100) - fix stack-based buffer overflow in gen_matches_files() (CVE-2018-1083) - fix buffer overrun in xsymlinks (CVE-2017-18206) - fix buffer overflow when scanning very long path for symlinks (CVE-2014-10072) [4.3.11-6] - signal-handling related fixes collected from upstream (#1311166) [4.3.11-5] - fix malloc() signal leak in lexsave() (#1267903)

CVE
ELSA-2018-1932
Snyk ID
SNYK-LINUX-ZSHHTML-172271
Published
16 Aug, 2018