PT-2018-4159 · Gnu+3 · Zsh+3

Peter Stephenson

Published

2014-10-30

Updated

2022-03-14

CVE-2014-10070

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions zsh versions prior to 5.0.7

Description The issue allows evaluation of the initial values of integer variables imported from the environment, instead of treating them as literal numbers. This could allow local privilege escalation under specific conditions where zsh is invoked in privilege-elevation contexts and the environment has not been properly sanitized, such as when zsh is invoked by sudo on systems where "env reset" has been disabled.

Recommendations For versions prior to 5.0.7, update to version 5.0.7 or later to resolve the issue. As a temporary workaround, consider disabling the invocation of zsh by sudo or ensure that "env reset" is enabled to minimize the risk of exploitation.

Fix

LPE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

ALT-PU-2014-2313

CVE-2014-10070

DLA-1304-1

OPENSUSE-SU-2018_1093-1

SUSE-SU-2018:1072-1

SUSE-SU-2018_1072-1

SUSE-SU-2022:14910-1

SUSE-SU-2022_14910-1

USN-3593-1

Affected Products

Alt Linux

Suse

Ubuntu

Zsh

PT-2018-4159 · Gnu+3 · Zsh+3

CVE-2014-10070

Weakness Enumeration

Related Identifiers

Affected Products

References · 79