Alpine: android-tools-zsh-completion, bzr-zsh-completion, composer-zsh-completion, multiple gcc-zsh-completion packages, imagemagick-zsh-completion, lynx-zsh-completion, postgresql-zsh-completion, rsync-zsh-completion, subversion-zsh-completion, tmux-zsh-completion, zfs-zsh-completion: security update to 5.4.2-r0 (deprecated)

high Tenable Cloud Security Plugin ID 400739

Description

There are packages installed that are affected by multiple vulnerabilities referenced in the following CVEs:

- zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd() function.
A local attacker could exploit this to cause a denial of service. (CVE-2018-1071)

- Zsh before version 5.4.2-test-1 is vulnerable to a buffer overflow in the shell autocomplete
functionality. A local unprivileged user can create a specially crafted directory path which leads to code
execution in the context of the user who tries to use autocomplete to traverse the before mentioned path.
If the user affected is privileged, this leads to privilege escalation. (CVE-2018-1083)

See Also

https://git.alpinelinux.org/aports/commit/?id=9c28202eac2457a216aee765ce009c610f216e8c

https://git.alpinelinux.org/aports/commit/?id=fad354c583d317e9c6dd1f9218d1362529d4f706

Plugin Details

Severity: High

ID: 400739

Version: Revision 1.23

Type: Local

Published: 8/16/2023

Updated: 7/2/2026

Supported Sensors: Agentless Assessment, Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Medium

Score: 4.9

Percentile: 57.12

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 5.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2018-1083

CVSS v3

Risk Factor: High

Base Score: 7.8

Temporal Score: 6.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

Exploit Ease: No known exploits are available

Patch Publication Date: 3/31/2018

Vulnerability Publication Date: 3/9/2018

Reference Information

CVE: CVE-2018-1071, CVE-2018-1083

BID: 103359, 103572