Download
| Alert*
|
oval:org.secpod.oval:def:506080
The bash packages provide Bash , which is the default shell for Red Hat Enterprise Linux. Security Fix: * bash: when effective UID is not equal to its real UID the saved UID is not dropped For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other rela ... oval:org.secpod.oval:def:88518 bash: GNU Bourne Again SHell Bash could be used to escalate privileges. oval:org.secpod.oval:def:2002866 An issue was discovered in disable_priv_mode in shell.c in GNU Bash through 5.0 patch 11. By default, if Bash is run with its effective UID not equal to its real UID, it will drop privileges by setting its effective UID to its real UID. However, it does so incorrectly. On Linux and other systems tha ... oval:org.secpod.oval:def:706396 bash: GNU Bourne Again SHell Bash could be used to escalate privileges. oval:org.secpod.oval:def:1504891 [4.4.19-14] - Fix hang when limit for nproc is very high Resolves: #1890888 [4.4.19-13] - Correctly drop saved UID when effective UID is not equal to its real UID Resolves: #1793943 oval:org.secpod.oval:def:97629 [CLSA-2022:1650910003] Fixed CVE-2019-18276 in bash |
