drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mangelnde Prüfung von Umgebungsvariablen in bash
Name: |
Mangelnde Prüfung von Umgebungsvariablen in bash |
|
ID: |
SSA:2014-268-02 |
|
Distribution: |
Slackware |
|
Plattformen: |
Slackware 13.0, Slackware x86_64 13.0 |
|
Datum: |
Fr, 26. September 2014, 07:31 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7169 |
|
Applikationen: |
GNU Bash |
|
Originalnachricht |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
[slackware-security] bash (rebuild for Slackware 13.0 only) (SSA:2014-268-02)
New bash packages are available for Slackware 13.0 to fix a security issue.
Here are the details from the Slackware 13.0 ChangeLog: +--------------------------+ patches/packages/bash-3.1.018-i486-3_slack13.0.txz: Rebuilt. The patch for CVE-2014-7169 needed to be rebased against bash-3.1 in order to apply correctly. Thanks to B. Watson for the bug report. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7169 (* Security fix *) +--------------------------+
Where to find the new packages: +-----------------------------+
Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://slackware.com for additional mirror sites near you.
Updated package for Slackware 13.0: bash-3.1.018-i486-3_slack13.0.txz
Updated package for Slackware x86_64 13.0: bash-3.1.018-x86_64-3_slack13.0.txz
MD5 signatures: +-------------+
Slackware 13.0 package: 17fe761daf847490e6286a6c59abd913 bash-3.1.018-i486-3_slack13.0.txz
Slackware x86_64 13.0 package: 7eb0a4741287042658487f2b6089a4c5 bash-3.1.018-x86_64-3_slack13.0.txz
Installation instructions: +------------------------+
Upgrade the package as root: # upgradepkg bash-3.1.018-i486-3_slack13.0.txz
+-----+
Slackware Linux Security Team http://slackware.com/gpg-key security@slackware.com
+------------------------------------------------------------------------+ | To leave the slackware-security mailing list: | +------------------------------------------------------------------------+ | Send an email to majordomo@slackware.com with this text in the body of | | the email message: | | | | unsubscribe slackware-security | | | | You will get a confirmation message back containing instructions to | | complete the process. Please do not reply to this email address. | +------------------------------------------------------------------------+ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1
iEYEARECAAYFAlQkoB0ACgkQakRjwEAQIjNlYQCdGCbOn7q0LV8GLbqokV+iGDeX 1hYAoIYeGAhwVo2mrSSNaAp+8PgzO1sC =4Axp -----END PGP SIGNATURE-----
|
|
|
|