Re: [PLUG] Bash remote code execution vulnerability

["Rich Mingin (PLUG)" <plug@frags.us>]

For what it's worth, all the distros I touch have fixed builds out, including Arch, Debian testing, Mint 17, Ubuntu 14.04, and Fedora 21. All in the last 24h, though, so check and update everything you can.

On Sep 24, 2014 8:36 PM, "jeff" <jeffv@op.net> wrote:

https://www.us-cert.gov/ncas/current-activity/2014/09/24/Bourne-Again-Shell-Bash-Remote-Code-Execution-Vulnerability

additional details
https://securityblog.redhat.com/2014/09/24/bash-specially-crafted-environment-variables-code-injection-attack/

GNU Bash patch
http://lists.gnu.org/archive/html/bug-bash/2014-09/threads.html

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug