Publishing details

Published on 2022-03-14
Copied from ubuntu bionic in PPA for Ubuntu Security Proposed by Rodrigo Figueiredo Zaiden

Changelog

zsh (5.4.2-3ubuntu3.2) bionic-security; urgency=medium

  * SECURITY UPDATE: Regain dropped privileges
    - debian/patches/CVE-2019-20044-pre.patch: change the order of the calls to
      setgid (this should go first) and setuid in Src/options.c.
    - debian/patches/CVE-2019-20044-1.patch: add extra checks to drop privileges
      securely in Src/options.c.
    - debian/patches/CVE-2019-20044-2.patch: add Src/openssh_bsd_setres_id.c
      and its object file to Src/zsh.mdd, fix some of the checks from the
      previous patch in Src/options.c, update compatibility wrappers in
      Src/zsh_system.h, update the uid/gid methods in AC_CHECK_FUNCS in
      configure.ac and add a test in Test/E01options.ztst.
    - debian/patches/CVE-2019-20044-3.patch: improve Src/options.c changes from
      above two patches.
    - debian/patches/CVE-2019-20044-4.patch: clean up white spaces in
      Src/options.c.
    - debian/patches/CVE-2019-20044-5.patch: add privileged tests to
      Test/P01privileged.ztst, remove the notes on privileged test in
      Test/E01options.ztst and add the prilived tests to the Test/README.
    - CVE-2019-20044
  * SECURITY UPDATE: Arbitrary code execution
    - debian/patches/CVE-2021-45444.patch: save PROMPTSUBST option before
      the call to promptexpand() in b/Src/prompt.c and restore after it is
      executed.
    - CVE-2021-45444

 -- Rodrigo Figueiredo Zaiden <email address hidden>  Fri, 11 Mar 2022 10:46:35 -0300

Available diffs

diff from 5.4.2-3ubuntu3.1 (in ~ubuntu-security/ubuntu/ppa) to 5.4.2-3ubuntu3.2 (12.9 KiB)
diff from 5.4.2-3ubuntu3 (in Ubuntu) to 5.4.2-3ubuntu3.2 (15.0 KiB)

Builds

Built packages

zsh shell with lots of features

zsh-common architecture independent files for Zsh

zsh-dbgsym debug symbols for zsh

zsh-dev shell with lots of features (development files)

zsh-doc zsh documentation - info/HTML format

zsh-static shell with lots of features (static link)

zsh-static-dbgsym debug symbols for zsh-static

Package files

zsh-common_5.4.2-3ubuntu3.2_all.deb (3.2 MiB)
zsh-dbgsym_5.4.2-3ubuntu3.2_amd64.ddeb (2.1 MiB)
zsh-dbgsym_5.4.2-3ubuntu3.2_arm64.ddeb (2.1 MiB)
zsh-dbgsym_5.4.2-3ubuntu3.2_armhf.ddeb (2.0 MiB)
zsh-dbgsym_5.4.2-3ubuntu3.2_i386.ddeb (1.9 MiB)
zsh-dbgsym_5.4.2-3ubuntu3.2_ppc64el.ddeb (2.4 MiB)
zsh-dbgsym_5.4.2-3ubuntu3.2_s390x.ddeb (2.1 MiB)
zsh-dev_5.4.2-3ubuntu3.2_amd64.deb (88.0 KiB)
zsh-dev_5.4.2-3ubuntu3.2_arm64.deb (88.0 KiB)
zsh-dev_5.4.2-3ubuntu3.2_armhf.deb (88.1 KiB)
zsh-dev_5.4.2-3ubuntu3.2_i386.deb (88.0 KiB)
zsh-dev_5.4.2-3ubuntu3.2_ppc64el.deb (88.0 KiB)
zsh-dev_5.4.2-3ubuntu3.2_s390x.deb (88.0 KiB)
zsh-doc_5.4.2-3ubuntu3.2_all.deb (2.5 MiB)
zsh-static-dbgsym_5.4.2-3ubuntu3.2_amd64.ddeb (1.5 MiB)
zsh-static-dbgsym_5.4.2-3ubuntu3.2_arm64.ddeb (1.6 MiB)
zsh-static-dbgsym_5.4.2-3ubuntu3.2_armhf.ddeb (1.5 MiB)
zsh-static-dbgsym_5.4.2-3ubuntu3.2_i386.ddeb (1.3 MiB)
zsh-static-dbgsym_5.4.2-3ubuntu3.2_ppc64el.ddeb (1.9 MiB)
zsh-static-dbgsym_5.4.2-3ubuntu3.2_s390x.ddeb (1.6 MiB)
zsh-static_5.4.2-3ubuntu3.2_amd64.deb (959.1 KiB)
zsh-static_5.4.2-3ubuntu3.2_arm64.deb (761.8 KiB)
zsh-static_5.4.2-3ubuntu3.2_armhf.deb (751.6 KiB)
zsh-static_5.4.2-3ubuntu3.2_i386.deb (906.2 KiB)
zsh-static_5.4.2-3ubuntu3.2_ppc64el.deb (1.0 MiB)
zsh-static_5.4.2-3ubuntu3.2_s390x.deb (809.5 KiB)
zsh_5.4.2-3ubuntu3.2.debian.tar.xz (90.4 KiB)
zsh_5.4.2-3ubuntu3.2.dsc (2.3 KiB)
zsh_5.4.2-3ubuntu3.2_amd64.deb (674.6 KiB)
zsh_5.4.2-3ubuntu3.2_arm64.deb (573.9 KiB)
zsh_5.4.2-3ubuntu3.2_armhf.deb (584.2 KiB)
zsh_5.4.2-3ubuntu3.2_i386.deb (705.8 KiB)
zsh_5.4.2-3ubuntu3.2_ppc64el.deb (739.2 KiB)
zsh_5.4.2-3ubuntu3.2_s390x.deb (616.9 KiB)
zsh_5.4.2.orig.tar.xz (2.5 MiB)