]> git.ipfire.org Git - people/pmueller/ipfire-2.x.git/commit
projects / people / pmueller / ipfire-2.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 77192e9) | patch
bash: Fix for CVE-2014-6271
authorMichael Tremer <michael.tremer@ipfire.org>
Wed, 24 Sep 2014 19:02:22 +0000 (21:02 +0200)
committerMichael Tremer <michael.tremer@ipfire.org>
Wed, 24 Sep 2014 19:02:22 +0000 (21:02 +0200)
commit9445ab4accc481844fa136e6bc30698e4121cdce
tree83094253bc1420996d79f97ae657dadb38044635tree | snapshot
parent77192e97b91cf58ed16a1f2fe69c3e4c17597a29commit | diff
bash: Fix for CVE-2014-6271

A flaw was found in the way Bash evaluated certain specially crafted
environment variables. An attacker could use this flaw to override
or bypass environment restrictions to execute shell commands.
Certain services and applications allow remote unauthenticated
attackers to provide environment variables, allowing them to exploit
this issue.
lfs/bash diff | blob | blame | history
src/patches/bash-4.3-CVE-2014-6271.patch [new file with mode: 0644] blob
Peter's tree of IPFire 2.x