Ubuntu Update For Bash USN-2362-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Stephane Chazelas discovered that Bash incorrectly handled trailing code in function definitions. An attacker could use this issue to bypass environment restrictions, such as SSH forced command environments.

Affected

bash on Ubuntu 14.04 LTS , Ubuntu 12.04 LTS , Ubuntu 10.04 LTS

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2014-September/002674.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-6271

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Ubuntu Update for exim4 vulnerability USN-1032-1
Ubuntu Update for eucalyptus vulnerability USN-1033-1
Ubuntu Update for Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities USN-896-1
Ubuntu Update for cups, cupsys vulnerability USN-1012-1
Ubuntu Update for bind9 USN-2503-1

Ubuntu Update for bash USN-2362-1

Take action and discover your vulnerabilities