You should 'yum update' as soon as possible to resolve this issue.
Here's why you should care:
https://securityblog.redhat.com/2014/09/24/bash-specially-crafted-environmen...
Links to the centos updates:
CentOS-5: http://lists.centos.org/pipermail/centos-announce/2014-September/020582.html
CentOS-6: http://lists.centos.org/pipermail/centos-announce/2014-September/020585.html
CentOS-7: http://lists.centos.org/pipermail/centos-announce/2014-September/020583.html
Maybe wait til the update has propagated to the mirrors. I just did a yum update, and bash wasn't in the list of updates.
[mattrose@tankhouse nchaos]$ rpm -q bash bash-4.2.45-5.el7.x86_64 [mattrose@tankhouse nchaos]$ sudo yum update [sudo] password for mattrose: Loaded plugins: fastestmirror, langpacks Loading mirror speeds from cached hostfile * base: less.cogeco.net * extras: less.cogeco.net * updates: centos.mirror.rafal.ca No packages marked for update
Is there anyway of pushing this (and other critical) updates more quickly?
Matt
On Wed, 2014-09-24 at 10:33 -0500, Jim Perrin wrote:
You should 'yum update' as soon as possible to resolve this issue.
Here's why you should care:
https://securityblog.redhat.com/2014/09/24/bash-specially-crafted-environmen...
Links to the centos updates:
CentOS-5: http://lists.centos.org/pipermail/centos-announce/2014-September/020582.html
CentOS-6: http://lists.centos.org/pipermail/centos-announce/2014-September/020585.html
CentOS-7: http://lists.centos.org/pipermail/centos-announce/2014-September/020583.html
On 09/24/2014 10:54 AM, Matt Rose wrote:
Maybe wait til the update has propagated to the mirrors. I just did a yum update, and bash wasn't in the list of updates.
[mattrose@tankhouse nchaos]$ rpm -q bash bash-4.2.45-5.el7.x86_64 [mattrose@tankhouse nchaos]$ sudo yum update [sudo] password for mattrose: Loaded plugins: fastestmirror, langpacks Loading mirror speeds from cached hostfile
- base: less.cogeco.net
- extras: less.cogeco.net
- updates: centos.mirror.rafal.ca
No packages marked for update
Is there anyway of pushing this (and other critical) updates more quickly?
We have millions of users .. so all the mirrors need to get updated, and that takes time.
You could change the line in /etc/yum.repos.d/CentOS-Base.repo from this:
mirrorlist=http://mirrorlist.centos.org/?release=$releasever&arch=$basearch&rep... #baseurl=http://mirror.centos.org/centos/$releasever/updates/$basearch/
to this:
#mirrorlist=http://mirrorlist.centos.org/?release=$releasever&arch=$basearch&rep... baseurl=http://mirror.centos.org/centos/$releasever/updates/$basearch/
NOTE: this can result in slower updates as there are not nearly as many servers on mirror.centos.org as the mirrorlist .. but it is an option.
I am sure that is also going to wrap ..
==================
For informational purposes (about the actual bash issue):
On Wed, 2014-09-24 at 11:54 -0400, Matt Rose wrote:
Maybe wait til the update has propagated to the mirrors. I just did a yum update, and bash wasn't in the list of updates.
[mattrose@tankhouse nchaos]$ rpm -q bash bash-4.2.45-5.el7.x86_64 [mattrose@tankhouse nchaos]$ sudo yum update [sudo] password for mattrose: Loaded plugins: fastestmirror, langpacks Loading mirror speeds from cached hostfile
- base: less.cogeco.net
- extras: less.cogeco.net
- updates: centos.mirror.rafal.ca
No packages marked for update
Is there anyway of pushing this (and other critical) updates more quickly?
I did a yum clean all before I saw the bash update for c7.
-
Jim Perrin -
Johnny Hughes -
Matt Rose -
Nathanael D. Noblet