[kwlug-disc] Vulnerability in bash
Paul Nijjar
paul_nijjar at yahoo.ca
Wed Sep 24 23:54:23 EDT 2014
On Wed, Sep 24, 2014 at 11:21:57PM -0400, L.D. Paniak wrote:
> The list should be aware of a newly-announced and particularly nasty
> parsing bug with all versions of bash:
>
> http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6271
>
> The combination of "network exploitable" and "authentication not
> required" make this a "10" on the severity scale.
>
> Updated packages for current versions of Ubuntu look to have been pushed
> out earlier today:
> https://launchpad.net/ubuntu/+source/bash
I am glad I am not the only one who found that bug scary.
- Paul
--
All-candidates meetings:
http://www.waterlooregion.org/municipal-elections-2014
More information about the kwlug-disc
mailing list