A zsh security update has been released for Oracle Linux 7.
Oracle Linux Security Advisory ELSA-2020-0853
http://linux.oracle.com/errata/ELSA-2020-0853.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
zsh-5.0.2-34.el7_7.2.x86_64.rpm
zsh-html-5.0.2-34.el7_7.2.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/zsh-5.0.2-34.el7_7.2.src.rpm
Description of changes:
[5.0.2-34.el7_7.2]
- improve printing of error messages introduced by the fix of CVE-2019-20044
[5.0.2-33.el7_7.1]
- drop privileges securely when unsetting PRIVILEGED option (CVE-2019-20044)