Format: 1.8 Date: Fri, 11 Mar 2022 10:46:35 -0300 Source: zsh Binary: zsh-common zsh zsh-doc zsh-static zsh-dev Architecture: all amd64 Version: 5.4.2-3ubuntu3.2 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Rodrigo Figueiredo Zaiden Description: zsh - shell with lots of features zsh-common - architecture independent files for Zsh zsh-dev - shell with lots of features (development files) zsh-doc - zsh documentation - info/HTML format zsh-static - shell with lots of features (static link) Changes: zsh (5.4.2-3ubuntu3.2) bionic-security; urgency=medium . * SECURITY UPDATE: Regain dropped privileges - debian/patches/CVE-2019-20044-pre.patch: change the order of the calls to setgid (this should go first) and setuid in Src/options.c. - debian/patches/CVE-2019-20044-1.patch: add extra checks to drop privileges securely in Src/options.c. - debian/patches/CVE-2019-20044-2.patch: add Src/openssh_bsd_setres_id.c and its object file to Src/zsh.mdd, fix some of the checks from the previous patch in Src/options.c, update compatibility wrappers in Src/zsh_system.h, update the uid/gid methods in AC_CHECK_FUNCS in configure.ac and add a test in Test/E01options.ztst. - debian/patches/CVE-2019-20044-3.patch: improve Src/options.c changes from above two patches. - debian/patches/CVE-2019-20044-4.patch: clean up white spaces in Src/options.c. - debian/patches/CVE-2019-20044-5.patch: add privileged tests to Test/P01privileged.ztst, remove the notes on privileged test in Test/E01options.ztst and add the prilived tests to the Test/README. - CVE-2019-20044 * SECURITY UPDATE: Arbitrary code execution - debian/patches/CVE-2021-45444.patch: save PROMPTSUBST option before the call to promptexpand() in b/Src/prompt.c and restore after it is executed. - CVE-2021-45444 Checksums-Sha1: de2aefd5b8751699936fb2f594ff31acc5288234 3375836 zsh-common_5.4.2-3ubuntu3.2_all.deb 042e550409aee64ab5bdb609070c569235466501 2163468 zsh-dbgsym_5.4.2-3ubuntu3.2_amd64.ddeb f8df8f0e83e310ec95c157a5532461c641b79a31 90140 zsh-dev_5.4.2-3ubuntu3.2_amd64.deb 73969175d2fc8b721e0470554d59777bf7f50de6 2662636 zsh-doc_5.4.2-3ubuntu3.2_all.deb a5ad0aac5f594e3862e1198cbc102de5b773f461 1569704 zsh-static-dbgsym_5.4.2-3ubuntu3.2_amd64.ddeb ef3d4030a4a3b63f0b167f35650142405b0171c1 982112 zsh-static_5.4.2-3ubuntu3.2_amd64.deb 427df76f1a6b9da0e3f1ed13550d3600fafabc9c 10329 zsh_5.4.2-3ubuntu3.2_amd64.buildinfo 8ff04165dafc5853b00640fedf821143927cc6b6 690740 zsh_5.4.2-3ubuntu3.2_amd64.deb Checksums-Sha256: b2e5d158c331d4c742fcff3ea499601aeaaf84a503a8ec3999e11abbf57dda5f 3375836 zsh-common_5.4.2-3ubuntu3.2_all.deb 0609070404afc0462233bd23068a56e459e6a8c09dbbd9c5d110148722341058 2163468 zsh-dbgsym_5.4.2-3ubuntu3.2_amd64.ddeb 67f57463a4d140ebfdc33515882ad947ade05e476590d5c9b49d2090fed66d56 90140 zsh-dev_5.4.2-3ubuntu3.2_amd64.deb f2a898fffb9d600afd3e88ef809bb13b029b7fa5b6ec2cb9b42e70c550522e68 2662636 zsh-doc_5.4.2-3ubuntu3.2_all.deb bb917f70d9704de2a402e895a2feb0b6e8ef6164b637de08b82d46e9c5028407 1569704 zsh-static-dbgsym_5.4.2-3ubuntu3.2_amd64.ddeb 35f91117c289eb64e0f0f7dd6a2cd97a6dbb178d3a2ff61047089e5ec29ec11b 982112 zsh-static_5.4.2-3ubuntu3.2_amd64.deb c0373447ebd0903047f27ce37508c823ca891d8070855b133279951596e39a03 10329 zsh_5.4.2-3ubuntu3.2_amd64.buildinfo 0ee21e5f87135fcbf5668f8d95f4099bf0d68daf59adc12fc068ce5ec547a6cf 690740 zsh_5.4.2-3ubuntu3.2_amd64.deb Files: 3281eef9c643c711d73b785ec4f7ff4b 3375836 shells optional zsh-common_5.4.2-3ubuntu3.2_all.deb ac731758df2dbb5c25cdc1286e0303e6 2163468 debug optional zsh-dbgsym_5.4.2-3ubuntu3.2_amd64.ddeb 1a55611afd9653b44a5f19cf86f4a2d9 90140 libdevel optional zsh-dev_5.4.2-3ubuntu3.2_amd64.deb ef2d934373e1244c1962530e3ed7794a 2662636 doc optional zsh-doc_5.4.2-3ubuntu3.2_all.deb d8483552430cadc7af9349d086f37545 1569704 debug optional zsh-static-dbgsym_5.4.2-3ubuntu3.2_amd64.ddeb bf90eeb9c42d0e3559757d18f784da65 982112 shells optional zsh-static_5.4.2-3ubuntu3.2_amd64.deb e907ce222549f467db1aa042d20198ad 10329 shells optional zsh_5.4.2-3ubuntu3.2_amd64.buildinfo b058e3d8dc2b07af0793e16cb46a35bc 690740 shells optional zsh_5.4.2-3ubuntu3.2_amd64.deb Original-Maintainer: Debian Zsh Maintainers