This Bash bug can be abused when running the web server with CGI
scripts, only.
Dne 7.10.2014 20:33, Alan Federman napsal(a):
My BBB with 14.04 newly installed (Two weeks ago) had
the vulnerability. Fortunately, a system update/upgrade will fix.
While this probably doesn't apply to most of us, there is a recent
security issue in Linux systems (Mid September) It is called
'Bashdoor' Bash Bug or 'Shellshock'
From the CLI on your system you can test with:
env x='() { :;}; echo vulnerable' bash -c "echo this is a test"
ubuntu@arm:~$ env x='() { :;}; echo vulnerable' bash -c "echo this is a test"
vulnerable
< bad
this is a test
To fix Ubuntu:
|apt-get update&& apt-get upgrade|
|After and update, the system was still vulnerable. After upgrade it was OK.|
|This is probably only an issue if you are running a server like Apache on your
bone.|
--
For more options, visit http://beagleboard.org/discuss
---
You received this message because you are subscribed to the Google
Groups "BeagleBoard" group.
To unsubscribe from this group and stop receiving emails from it, send
an email to [email protected]
<mailto:[email protected]>.
For more options, visit https://groups.google.com/d/optout.
Zpráva neobsahuje viry.
Zkontrolováno AVG - www.avg.cz <http://www.avg.cz>
Verze: 2015.0.5315 / Virová báze: 4176/8340 - Datum vydání: 7.10.2014
--
For more options, visit http://beagleboard.org/discuss
---
You received this message because you are subscribed to the Google Groups "BeagleBoard" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/d/optout.
