DSA-3035-1 bash -- bashID: oval:org.secpod.oval:def:601787 | Date: (C)2014-10-13 (M)2024-02-19 |
Class: PATCH | Family: unix |
Tavis Ormandy discovered that the patch applied to fix CVE-2014-6271 released in DSA-3032-1 for bash, the GNU Bourne-Again Shell, was incomplete and could still allow some characters to be injected into another environment . With this update prefix and suffix for environment variable names which contain shell functions are added as hardening measure. Additionally two out-of-bounds array accesses in the bash parser are fixed which were revealed in Red Hat"s internal analysis for these issues and also independently reported by Todd Sabin.