CVSROOT: /cvs
Module name: ports
Changes by: st...@cvs.openbsd.org 2022/02/12 10:15:12
Modified files:
shells/zsh : Tag: OPENBSD_7_0 Makefile distinfo
Log message:
update to zsh-5.8.1, from Matthew Martin
This is a stable security release with a few bug fixes, including one
for CVE-2021-45444, a vulnerability in prompt expansion which could be
exploited through e.g. VCS_Info to execute arbitrary shell commands
without a user's knowledge. All sites are encouraged to update from
zsh 5.8. A partial work-around which can be applied within a running
shell is provided in the source distribution for those who are unable
to update their shell binaries.
https://www.zsh.org/mla/announce/msg00133.html
