LinuxBBQ

Forums
https://linuxbbq.com/bbs/

Remote Exploit Vulnerability Found In Bash

https://linuxbbq.com/bbs/viewtopic.php?f=9&t=1589

Page 1 of 1

Remote Exploit Vulnerability Found In Bash

Posted: Thu Sep 25, 2014 7:39 am
by machinebacon
http://seclists.org/oss-sec/2014/q3/650
https://lists.debian.org/debian-securit ... 00220.html


Please apt-get update and dist-upgrade (or --upgrade-only) bash by the end of the week.
Debian and other GNU/Linux vendors plan to disclose a critical,
remotely exploitable security vulnerability in bash this week, related
to the processing of environment variables. Stephane Chazelas
discovered it, and CVE-2014-6271 has been assigned to it.

Re: Remote Exploit Vulnerability Found In Bash

Posted: Thu Sep 25, 2014 7:58 am
by GekkoP
Thanks for this.

Re: Remote Exploit Vulnerability Found In Bash

Posted: Thu Sep 25, 2014 9:04 am
by wuxmedia
cheers

Re: Remote Exploit Vulnerability Found In Bash

Posted: Thu Sep 25, 2014 5:06 pm
by ivanovnegro
I won't make a new warning but you should also upgrade apt for security reasons, there was a buffer overflow.

https://lists.debian.org/debian-securit ... 00219.html

Re: Remote Exploit Vulnerability Found In Bash

Posted: Fri Sep 26, 2014 6:40 am
by wuxmedia
Once more - this time with feeling...
http://www.theregister.co.uk/2014/09/25 ... ype_fears/

new version number

Code: Select all

4.2+dfsg-0.1+deb7u3
gonna be a loong friday...
All times are UTC+01:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited