|
|
Subscribe / Log in / New account

Scientific Linux alert SLSA-2020:0568-1 (ksh)



From:
              Scott Reid <svreid@fnal.gov> 


To:
              scientific-linux-errata@listserv.fnal.gov 


Subject:
              Security ERRATA Important: ksh on SL7.x x86_64 


Date:
              Tue, 25 Feb 2020 17:11:23 -0000


Message-ID:
              <20200225171123.21682.58854@slpackages.fnal.gov>


Synopsis:          Important: ksh security update
Advisory ID:       SLSA-2020:0568-1
Issue Date:        2020-02-24
CVE Numbers:       None
--

Security Fix(es):

ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to
code injection (CVE-2019-14868)

--

SL7
  x86_64
    ksh-20120801-140.el7_7.x86_64.rpm
    ksh-debuginfo-20120801-140.el7_7.x86_64.rpm

- Scientific Linux Development Team
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds