Mandriva Linux Security Advisory : zsh (MDVSA-2009:108-1)
High Nessus Plugin ID 38708
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionA stack-based buffer overflow was found in the zsh command interpreter. An attacker could use this flaw to cause a denial of service (zsh crash), when providing a specially crafted string as input to the zsh shell.
The updated packages have been patched to prevent this.
Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers
SolutionUpdate the affected zsh and / or zsh-doc packages.