Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
7.2
CVSSv2

CVE-2019-20044

Published: 24/02/2020 Updated: 07/11/2023
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 642
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

In Zsh prior to 5.8, attackers able to execute commands can regain privileges dropped by the --no-PRIVILEGED option. Zsh fails to overwrite the saved uid, so the original privileges can be restored by executing MODULE_PATH=/dir/with/module zmodload with a module that calls setuid().

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

zsh zsh

fedoraproject fedora 30

fedoraproject fedora 31

debian debian linux 8.0

debian debian linux 9.0

apple mac os x

apple iphone os

apple watchos

apple tvos

apple ipados

apple mac os x 10.14.6

apple mac os x 10.13.6

Vendor Advisories

Ubuntu Security Notice: USN-5325-1: Zsh vulnerabilities
Several security issues were fixed in Zsh ...
Debian CVElist Bug Report Logs: zsh: CVE-2019-20044: insecure dropping of privileges when unsetting PRIVILEGED option
Debian Bug report logs - #951458 zsh: CVE-2019-20044: insecure dropping of privileges when unsetting PRIVILEGED option Package: zsh; Maintainer for zsh is Debian Zsh Maintainers <pkg-zsh-devel@listsaliothdebianorg>; Source for zsh is src:zsh (PTS, buildd, popcon) Reported by: Axel Beckert <abe@debianorg> Date: Su ...
Red Hat: Important: zsh security update
Synopsis Important: zsh security update Type/Severity Security Advisory: Important Topic An update for zsh is now available for Red Hat Enterprise Linux 6Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which g ...
Red Hat: Important: zsh security update
Synopsis Important: zsh security update Type/Severity Security Advisory: Important Topic An update for zsh is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which g ...
Red Hat: Important: zsh security update
Synopsis Important: zsh security update Type/Severity Security Advisory: Important Topic An update for zsh is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which g ...
Red Hat: Important: zsh security update
Synopsis Important: zsh security update Type/Severity Security Advisory: Important Topic An update for zsh is now available for Red Hat Enterprise Linux 80 Update Services for SAP SolutionsRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scori ...
Amazon Linux 2: ALAS2-2020-1439
In Zsh before 58, attackers able to execute commands can regain privileges dropped by the --no-PRIVILEGED option Zsh fails to overwrite the saved uid, so the original privileges can be restored by executing MODULE_PATH=/dir/with/module zmodload with a module that calls setuid() (CVE-2019-20044) ...

Mailing Lists

Full Disclosure: APPLE-SA-2020-05-26-1 iOS 13.5 and iPadOS 13.5
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2020-05-26-1 iOS 135 and iPadOS 135 iOS 135 and iPadOS 135 address the following: Accounts Available for: iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation Impact: A remote attacker may be able to cause a denial of service Description: A de ...
Full Disclosure: APPLE-SA-2020-05-26-3 macOS Catalina 10.15.5, Security Update 2020-003 Mojave, Security Update 2020-003 High Sierra
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2020-05-26-3 macOS Catalina 10155, Security Update 2020-003 Mojave, Security Update 2020-003 High Sierra macOS Catalina 10155, Security Update 2020-003 Mojave, Security Update 2020-003 High Sierra are now available and address the following: Accounts Available for: macOS Catalina 1015 ...
Full Disclosure: APPLE-SA-2020-05-26-4 tvOS 13.4.5
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2020-05-26-4 tvOS 1345 tvOS 1345 addresses the following: Accounts Available for: Apple TV 4K and Apple TV HD Impact: A remote attacker may be able to cause a denial of service Description: A denial of service issue was addressed with improved input validation CVE-2020-9827: Jannik Lo ...
Full Disclosure: APPLE-SA-2020-05-26-5 watchOS 6.2.5
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2020-05-26-5 watchOS 625 watchOS 625 addresses the following: Accounts Available for: Apple Watch Series 1 and later Impact: A remote attacker may be able to cause a denial of service Description: A denial of service issue was addressed with improved input validation CVE-2020-9827: Ja ...

Github Repositories

https://github.com/MRXXII/Tema-zsh

Tema-zsh THE Z SHELL (ZSH) Version This is version 59 of the shell This is a security and feature release There are several visible improvements since 581, as well as bug fixes All zsh installations are encouraged to upgrade as soon as possible Note in particular the changes highlighted under "Incompatibilities since 581" below See NEWS for more informati

https://github.com/MRXXII/zsh

Tema-zsh THE Z SHELL (ZSH) Version This is version 59 of the shell This is a security and feature release There are several visible improvements since 581, as well as bug fixes All zsh installations are encouraged to upgrade as soon as possible Note in particular the changes highlighted under "Incompatibilities since 581" below See NEWS for more informati

References

CWE-273http://zsh.sourceforge.net/releases.htmlhttps://github.com/XMB5/zsh-privileged-upgradehttps://www.zsh.org/mla/zsh-announce/141https://lists.debian.org/debian-lts-announce/2020/03/msg00004.htmlhttps://security.gentoo.org/glsa/202003-55https://support.apple.com/kb/HT211175https://support.apple.com/kb/HT211170https://support.apple.com/kb/HT211171https://lists.debian.org/debian-lts-announce/2020/12/msg00000.htmlhttps://support.apple.com/HT211175https://support.apple.com/HT211171https://support.apple.com/HT211170https://support.apple.com/HT211168http://seclists.org/fulldisclosure/2020/May/53http://seclists.org/fulldisclosure/2020/May/55http://seclists.org/fulldisclosure/2020/May/59http://seclists.org/fulldisclosure/2020/May/49https://support.apple.com/kb/HT211168https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FP64FFIZI2CKQOEAOI5A72PVQULE7ZZC/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PN5V7MPHRRP7QNHOEK56S7QGRU53WUN6/https://nvd.nist.govhttps://ubuntu.com/security/notices/USN-5325-1https://alas.aws.amazon.com/AL2/ALAS-2020-1439.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-0044client sideCVE-2021-47601deserializationCVE-2024-34994encryptionCVE-2021-47609CVE-2024-37079CVE-2024-38608
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook