Bash specially-crafted environment variables code injection attack

Jan Dušátko jan at dusatko.org
Fri Oct 3 08:39:30 CEST 2014

Previous message: QinQ
Next message: Alix 1D
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Zda se, ze to stale nekonci. Pribyly dalsi dva CVE zaznamy, tedy celkem uz
sest.
CVE-2014-6271 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6271
CVE-2014-6277 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6277
CVE-2014-6278 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6278
CVE-2014-7169 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-7169
CVE-2014-7186 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-7186
CVE-2014-7187 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-7187

Snazim se pochopit, kolik se toho bude tykat FreeBSD. Vse zalezi na tom,
kolik program vyuziva knihovny jako readline a libreadline

Honza

Previous message: QinQ
Next message: Alix 1D
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users-l mailing list