[Wolves] bash Vulnerability

Ron Wellsted ron at wellsted.org.uk
Thu Sep 25 07:55:27 UTC 2014

In case you have been off the net for the past 24 hours, there is a
vulnerability which allows a specially crafted shell script to run
arbitrary code, so it is time to update your systems.

To test if your version of bash is vulnerable to this issue, please run
the following line of bash script (I promise this only tests for the
vulnerability !):

env x='() { :;}; echo vulnerable'  bash -c "echo this is a test"

Ron Wellsted
ron at wellsted.org.uk http://www.wellsted.org.uk
Call Sign: M0RNW, Linux Counter No. 202120

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: OpenPGP digital signature
URL: <http://mailman.lug.org.uk/pipermail/wolves/attachments/20140925/03065722/attachment.pgp>

More information about the Wolves mailing list