Bourne Again Shell Vulnerability on Linux and Mac OS X

Hi

 

Please take note of the security issues and install a security patches on Any All of your Linux Distros.

 

Will be posting of any new OS X security updates... at the moment please do check the Apple Security Update webpage often. That's is my recommendations.

 

support.apple.com/kb/ht1222

 

 

 

------------------------------------------------------------------------------------------------------------------------

 

https://www.us-cert.gov/ncas/current-activity/2014/09/24/Bourne-Again-Shell-Bash-Remote-Code-Execution-Vulnerability

 

US-CERT is aware of a Bash vulnerability affecting Unix-based operating systems such as Linux and Mac OS X. Exploitation of this vulnerability may allow a remote attacker to execute arbitrary code on an affected system.

The flaw was originally assigned CVE-2014-6271, but it was later discovered that the patch had an issue in the parser and did not fully address the problem. MITRE later assigned CVE-2014-7169 to cover the remaining problems after the application of the first patch.

US-CERT recommends users and administrators review TA14-268A, Vulnerability Note VU#252743 and the Redhat Security Blog (link is external) for additional details and to refer to their respective Linux or Unix-based OS vendor(s) for an appropriate patch. A GNU Bash patch is also available for experienced users and administrators to implement.

Operating systems with updates include:

    CentOS
    Debian
    Redhat (link is external)
    Ubuntu (link is external)

http://lists.centos.org/pipermail/centos/2014-September/146099.html

 

https://www.debian.org/security/2014/dsa-3032

 

https://access.redhat.com/site/solutions/1207723

 

http://www.ubuntu.com/usn/usn-2362-1/

Answers

This discussion has been closed.