Fwd: [NZLUG] ALERT: Remote code-exec in bash (CVE-2014-6271)
Typo... ---------- Forwarded message ---------- From: Volker Kuhlmann <hidden(a)paradise.net.nz> Date: Thu, Sep 25, 2014 at 10:23 AM Subject: Re: [NZLUG] ALERT: Remote code-exec in bash (CVE-2014-6271) To: NZ Linux Users Group <nzlug(a)lists.nzoss.org.nz> On Thu 25 Sep 2014 08:33:37 NZST +1200, Clark Mills wrote:
[ from /. thread ]
This is the test to see if you are vulnerable:
env x='() {:;}; echo vulnerable' bash -c "echo this is a test"
bash env x='() {:;}; echo vulnerable' bash -c "echo this is a test" bash: x: line 0: syntax error near unexpected token `{:' bash: x: line 0: `x () {:;}; echo vulnerable' bash: error importing function definition for `x'
env x='() { :;}; echo vulnerable' bash -c "echo this is a test" vulnerable
Thanks for that. http://beta.slashdot.org/comments.pl?sid=5750159&cid=47985625 However, your code here seems to have a serious copy/paste/etc error in it: this is a test this is a test GNU bash, version 4.2.42(1)-release (x86_64-suse-linux-gnu) Volker -- Volker Kuhlmann is list0570 with the domain in header. http://volker.top.geek.nz/ Please do not CC list postings to me. _______________________________________________ NZLUG mailing list NZLUG(a)lists.nzoss.org.nz http://lists.nzoss.org.nz/mailman/listinfo/nzlug -- Peter Reutemann, Dept. of Computer Science, University of Waikato, NZ http://www.cms.waikato.ac.nz/~fracpete/ Ph. +64 (7) 858-5174
On Thu, 25 Sep 2014 10:35:36 +1200, Peter Reutemann wrote:
Typo...
Yes, I got that error too. Ubuntu 14.04 has updates including one for bash so I assume that update fixed the issue in the subject header
Ubuntu 14.04 has updates including one for bash so I assume that update fixed the issue in the subject header
I am running ubuntu / unity 14.04 with... $ bash --version GNU bash, version 4.3.11(1)-release (x86_64-pc-linux-gnu) ...and I would get this response to the vulnerability check... $ env x='() { :;}; echo vulnerable' bash -c "echo this is a test" vulnerable this is a test Last night I used the "Software Updater" GUI tool which updates from Ubuntu's mirror.xnet.co.nz repository and I noticed that one of the updates was for bash. After the update the version number for bash is still the same... $ bash --version GNU bash, version 4.3.11(1)-release (x86_64-pc-linux-gnu) ...However there is a change with the vulnerability check... $ env x='() { :;}; echo vulnerable' bash -c "echo this is a test" bash: warning: x: ignoring function definition attempt bash: error importing function definition for `x' this is a test cheers, Ian.
To: wlug(a)list.waikato.ac.nz Date: Fri, 26 Sep 2014 09:50:44 +1200 From: mailinglist(a)blahdeblah.co.nz Subject: Re: [wlug] Fwd: [NZLUG] ALERT: Remote code-exec in bash (CVE-2014-6271)
On Thu, 25 Sep 2014 10:35:36 +1200, Peter Reutemann wrote:
Typo...
Yes, I got that error too. Ubuntu 14.04 has updates including one for bash so I assume that update fixed the issue in the subject header _______________________________________________ wlug mailing list | wlug(a)list.waikato.ac.nz Unsubscribe: http://list.waikato.ac.nz/mailman/listinfo/wlug
Last night I used the "Software Updater" GUI tool which updates from Ubuntu's mirror.xnet.co.nz repository and I noticed that one of the updates was for bash.
did you logout in between tests? the bash version seems to be the same
did you logout in between tests? the bash version seems to be the same
Yes. I shut-down and rebooted. I dunno why the version number stays the same. I would have thought it would increment ;-)
To: wlug(a)list.waikato.ac.nz Date: Fri, 26 Sep 2014 11:01:54 +1200 From: mailinglist(a)blahdeblah.co.nz Subject: Re: [wlug] Fwd: [NZLUG] ALERT: Remote code-exec in bash (CVE-2014-6271)
Last night I used the "Software Updater" GUI tool which updates from Ubuntu's mirror.xnet.co.nz repository and I noticed that one of the updates was for bash.
did you logout in between tests? the bash version seems to be the same
_______________________________________________ wlug mailing list | wlug(a)list.waikato.ac.nz Unsubscribe: http://list.waikato.ac.nz/mailman/listinfo/wlug
Hi, In case you cannot figure out your test messages, Ubuntu and its variants are not affected by the bug, as their default shell is dash, the Debian Almquist shell. http://www.theregister.co.uk/2014/09/24/bash_shell_vuln/ Wolfgang On 26/09/14 09:50, mailinglist wrote:
On Thu, 25 Sep 2014 10:35:36 +1200, Peter Reutemann wrote:
Typo...
Yes, I got that error too. Ubuntu 14.04 has updates including one for bash so I assume that update fixed the issue in the subject header _______________________________________________ wlug mailing list | wlug(a)list.waikato.ac.nz Unsubscribe: http://list.waikato.ac.nz/mailman/listinfo/wlug .
participants (4)
-
Ian Stewart -
mailinglist -
Peter Reutemann -
Wolfgang