FS#42102 : [bash] CVE-2014-6271: remote code execution through bash

FS#42102 - [bash] CVE-2014-6271: remote code execution through bash

Attached to Project: Arch Linux
Opened by abn (abn) - Wednesday, 24 September 2014, 15:26 GMT
Last edited by Doug Newgard (Scimmia) - Wednesday, 24 September 2014, 15:34 GMT

Task Type	Bug Report
Category	Packages: Core
Status	Closed
Assigned To	No-one
Architecture	All
Severity	Critical
Priority	Normal
Reported Version
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	0
Private	No

Details

Description:
CVE-2014-6271: remote code execution through bash

Details of issue and upstream patches available at [1].

Additional info:
* bash 4.3.024-1
* http://ftp.gnu.org/pub/gnu/bash/bash-4.3-patches/bash43-025

Steps to reproduce:
See [1].

[1] http://seclists.org/oss-sec/2014/q3/650

This task depends upon

Closed by Doug Newgard (Scimmia)
Wednesday, 24 September 2014, 15:34 GMT
Reason for closing: Fixed
Additional comments about closing: 4.3.024-2

Comment by Doug Newgard (Scimmia) - Wednesday, 24 September 2014, 15:34 GMT

You're late.
https://projects.archlinux.org/svntogit/packages.git/commit/trunk?h=packages/bash&id=c0d2b3979c4ba6da0476ec4e6759fd945cde1281

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

FS#42102 - [bash] CVE-2014-6271: remote code execution through bash

Details

Loading...