Subject: | Bourne-Again Shell (Bash) Remote Code Execution Vulnerability |
---|---|
Date: | Tue, 30 Sep 2014 21:13:26 -0500 |
From: | US-CERT <US-...@ncas.us-cert.gov> |
Reply-To: | US-...@ncas.us-cert.gov |
To: | gera...@gmail.com |
National Cyber Awareness System: 09/24/2014 06:06 PM EDT
Original release date: September 24, 2014
| Last revised: September 30, 2014
US-CERT is aware of a Bash vulnerability affecting Unix-based operating systems such as Linux and Mac OS X. Exploitation of this vulnerability may allow a remote attacker to execute arbitrary code on an affected system. US-CERT recommends users and administrators review TA14-268A, Vulnerability Note VU#252743 and the Redhat Security Blog for additional details and to refer to their respective Linux or Unix-based OS vendor(s) for an appropriate patch. A GNU Bash patch is also available for experienced users and administrators to implement. This product is provided subject to this Notification and this Privacy & Use policy.
|