CESA-2020:0515 -- centos 6 kshID: oval:org.secpod.oval:def:205439 | Date: (C)2020-02-19 (M)2023-07-28 |
Class: PATCH | Family: unix |
KornShell is a Unix shell developed by AT&T Bell Laboratories, which is backward-compatible with the Bourne shell and includes many features of the C shell. The most recent version is KSH-93. KornShell complies with the POSIX.2 standard . Security Fix: * ksh: certain environment variables interpreted as arithmetic expressions on startup, leading to code injection For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.