Lists

Open Menu Close Menu

Terms and Conditions
Lists hosted on this site
Email the Postmaster
Tips for posting to public mailing lists

[Rockies-Edu] Shell Vulnerabilities

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Rockies-Edu] Shell Vulnerabilities

Subject: [Rockies-Edu] Shell Vulnerabilities
From: "Hoffman, Kevin" <email@hidden>
Date: Fri, 26 Sep 2014 16:59:35 +0000
Thread-topic: Shell Vulnerabilities

Hi All,

I've been checking http://ftp.gnu.org/gnu/bash/ and as of now on 9/26, it looks like there's still no official bash patch that addresses CVE-2014-7169.

So I've decided to try testing the unofficial bash patch that's available:

http://seclists.org/oss-sec/2014/q3/734

Using this as a guide:

http://alblue.bandlem.com/2014/09/bash-remote-vulnerability.html

My question is, if I'm trying to patch a Lion (10.7.5) system to bash 3.2.53, does anyone foresee a problem with using Apple's latest "bash-92" release (bash 3.2.51(1)) as the basis for patching?

I only ask because Apple's "official" bash release on Lion was "bash-84" (bash 3.2.48(1)).

https://opensource.apple.com/release/os-x-1094/

https://opensource.apple.com/release/mac-os-x-1075/

It's hard to imagine there'd be a problem, but just thought I'd ask.

Thanks,

Kevin

--

Kevin Hoffman

Colorado Genetics Lab

 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Rockies-edu mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden

Follow-Ups:
- Re: [Rockies-Edu] Shell Vulnerabilities
  - From: SMATech <email@hidden>

Prev by Date: Re: [Rockies-Edu] iOS 8 Deployment Reference
Next by Date: Re: [Rockies-Edu] Shell Vulnerabilities
Previous by thread: [Rockies-Edu] Configurator 1.6
Next by thread: Re: [Rockies-Edu] Shell Vulnerabilities
Index(es):
- Date
- Thread