Scientific Linux SL6: SLSA-2020-0515-1 Important Ksh Code Injection Fix

Feb 17, 2020 •

LinuxSecurity Advisories

1 min read

Topics Covered

security advisory code injection Scientific Linux environment variables ksh update

ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection (CVE-2019-14868) SL6 x86_64 ksh-20120801-38.el6_10.x86_64.rpm ksh-debuginfo-20120801-38.el6_10.x86_64.rpm i386 ksh-20120801-38.el6_10.i686.rpm ksh-debuginfo-20120801-38.el6_10.i686.rpm - Scientific Linux Development Team

Synopsis:          Important: ksh security update
Advisory ID:       SLSA-2020:0515-1
Issue Date:        2020-02-17
CVE Numbers:       None
--

Security Fix(es):

* ksh: certain environment variables interpreted as arithmetic expressions
on startup, leading to code injection (CVE-2019-14868)
--

SL6
  x86_64
    ksh-20120801-38.el6_10.x86_64.rpm
    ksh-debuginfo-20120801-38.el6_10.x86_64.rpm
  i386
    ksh-20120801-38.el6_10.i686.rpm
    ksh-debuginfo-20120801-38.el6_10.i686.rpm

- Scientific Linux Development Team

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Your message here

Scientific Linux SL6: SLSA-2020-0515-1 Important Ksh Code Injection Fix

Topics Covered

Search Advisories & Updates

Recent Searches

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Scientific Linux SL6: SLSA-2020-0515-1 Important Ksh Code Injection Fix

Topics Covered

Search Advisories & Updates

Recent Searches

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!