[LUG.ro] Bash Code Injection Vulnerability

Sebastián D. Criado sebastian.criado en gmail.com
Mie Sep 24 17:10:48 ART 2014


Serio . Mirar links (Ingles)

Stephane Chazelas discovered a vulnerability in bash, the GNU
Bourne-Again Shell, related to how environment variables are
processed.  In many common configurations, this vulnerability is
exploitable over the network, especially if bash has been configured
as the system shell.

http://seclists.org/oss-sec/2014/q3/650
https://access.redhat.com/articles/1200223
https://lists.debian.org/debian-security-announce/2014/msg00220.html

Saludos.-

-- 
Sebastian.Criado en gmail.com - GPG : 1024D/AF0452F0
E016 C59B A319 E72E AFE6|linuxcounter.net #146768
B07D F5B5 405A AF04 52F0| http://www.lugro.org.ar
http://noalamatricula.wordpress.com/about/ read!!
"Si  el  Universo fuera un programa estaría hecho
en C, y correría sobre un sistema UNIX"  Anónimo.


Más información sobre la lista de distribución Lugro