[ Date Index ]
[ Thread Index ]
[ <= Previous by date /
thread ]
[ Next by date /
thread => ]
Re: [LUG] bash vulnerability
- To: "list@xxxxxxxxxxxxx" <list@xxxxxxxxxxxxx>
- Subject: Re: [LUG] bash vulnerability
- From: "Tremayne, Steve" <steven.tremayne@xxxxxxxxxxxxx>
- Date: Thu, 25 Sep 2014 15:07:24 +0000
- Accept-language: en-US
- Authentication-results: spf=neutral (sender IP is 199.64.221.173) smtp.mailfrom=steven.tremayne@xxxxxxxxxxxxx;
- Content-language: en-US
- Delivered-to: dclug@xxxxxxxxxxxxxxxxxxxxx
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=dcglug.org.uk; s=1396810045; h=Sender:Content-Transfer-Encoding:Content-Type:List-Subscribe:List-Help:List-Post:List-Unsubscribe:List-Id:Reply-To:Subject:MIME-Version:In-Reply-To:References:Message-ID:Date:To:From; bh=Q4WLUhEoxHTCQlSUavVn7z3dyB2u8TBWJCqVy6vcXFs=; b=eob65GFf6s1eIc+JmlgUCry1txGwBVOxDff+2qnA7Vgvwi779oZJnoaTVt8hFJYVpyQYuwjzQ7PAyD0oyvEUpx1eKPLESXSKGm1HMIrsr8oDIertGh/4uaGGwBoNkC6JoR1JdYHkBwCn7clBw9yvjWtMcWvNyOFlPpqLvZCEOV4=;
- Thread-index: AQHP2JdHiJttvo5ln0aLM1un7KTtg5wR8vrg
- Thread-topic: [LUG] bash vulnerability
Just done an update on my Bodhi box (based on Ubuntu "precise" (whichever number
that was...)) and this is "resolved"
(I tested the line below before & after the update)
I noticed that the "fix" still has other vulnerabilities though:
http://www.infoq.com/news/2014/09/bash-remote-exploit
-----Original Message-----
From: list [mailto:list-bounces@xxxxxxxxxxxxx] On Behalf Of Tom
Sent: 25 September 2014 09:03
To: Devon/Cornwall GNU LUG
Subject: [LUG] bash vulnerability
Stories going around about a bash vulnerability:
test with
$env x='() { :;}; echo vulnerable' bash -c 'echo hello'
and update!
Tom te tom te tom
--
The Mailing List for the Devon & Cornwall LUG
http://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/listfaq
--
The Mailing List for the Devon & Cornwall LUG
http://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/listfaq
