]> git.ipfire.org Git - ipfire-2.x.git/commit
projects / ipfire-2.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ce84ace) | patch
bash: Fix for CVE-2014-6271
authorMichael Tremer <michael.tremer@ipfire.org>
Wed, 24 Sep 2014 19:02:22 +0000 (21:02 +0200)
committerMichael Tremer <michael.tremer@ipfire.org>
Mon, 29 Sep 2014 11:49:51 +0000 (13:49 +0200)
commit77b3d64a169130ad4d51a35b54749415687f5c01
tree6b9ce24284192ba5091cd61e64b88ed34a47889etree | snapshot
parentce84ace5bf3b2de70fd437e61ef369e5afd82101commit | diff
bash: Fix for CVE-2014-6271

A flaw was found in the way Bash evaluated certain specially crafted
environment variables. An attacker could use this flaw to override
or bypass environment restrictions to execute shell commands.
Certain services and applications allow remote unauthenticated
attackers to provide environment variables, allowing them to exploit
this issue.
lfs/bash diff | blob | blame | history
src/patches/bash-4.3-CVE-2014-6271.patch [new file with mode: 0644] blob
IPFire 2.x development tree