[CentOS] Bash still vulnerable

Thu Oct 9 11:34:41 UTC 2014
Karanbir Singh <mail-lists at karan.org>

On 10/09/2014 12:26 PM, Lars Hecking wrote:
> 
>  According to the vulnerability test script from shellshocker.net, the latest
>  bash versions on CentOS5 and CentOS6, 3.2-33.el5_11.4 and 4.1.2-15.el6_5.2,
>  resp., are still vulnerable to CVE-2014-6277. In fact, on CentOS6, abrtd will
>  send you a nice report about it. Does anyone know if upstream is working on a
>  fix?
> 

https://bugzilla.redhat.com/show_bug.cgi?id=1147189 has conversation and
details that you might find interesting.


-- 
Karanbir Singh
+44-207-0999389 | http://www.karan.org/ | twitter.com/kbsingh
GnuPG Key : http://www.karan.org/publickey.asc