[BlueOnyx:16027] Re: Bash Vulnerability
Gerald Waugh
gwaugh at frontstreetnetworks.com
Wed Sep 24 17:49:14 -05 2014
On 09/24/2014 05:10 PM, DD wrote:
>
> CentOS 5-7 are explicitly mentioned here:
>
> http://arstechnica.com/security/2014/09/bug-in-bash-shell-creates-big-security-hole-on-anything-with-nix-in-it/
>
>
>
[root at hostl ~]# env x='() { :;}; echo vulnerable' bash -c "echo this is
a test"
vulnerable
this is a test
looks like this build 20140205 for a 5108R in en_US is vulnerable
updating:
bash x86_64 4.1.2-15.el6_5.1 sl-security 904 k
[root at host ~]# env x='() { :;}; echo vulnerable' bash -c "echo this is
a test"
*bash: warning: x: ignoring function definition attempt**
**bash: error importing function definition for `x'*
this is a test
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.blueonyx.it/pipermail/blueonyx/attachments/20140924/e8208b28/attachment.html>
More information about the Blueonyx
mailing list