oss-sec mailing list archives
Re: CVE-2014-6271: remote code execution through bash
From: Huzaifa Sidhpurwala <huzaifas () redhat com>
Date: Thu, 25 Sep 2014 07:35:00 +0530
On 09/25/2014 07:07 AM, Chet Ramey wrote:
On 9/24/14, 9:30 PM, Solar Designer wrote:On Wed, Sep 24, 2014 at 06:26:53PM -0700, Anthony Liguori wrote:On Wed, Sep 24, 2014 at 6:23 PM, Chet Ramey <chet.ramey () case edu> wrote:On 9/24/14, 5:32 PM, Solar Designer wrote:On Wed, Sep 24, 2014 at 11:27:09PM +0200, Hanno B??ck wrote:Tavis Ormandy just tweetet this: https://twitter.com/taviso/status/514887394294652929 The bash patch seems incomplete to me, function parsing is still brittle. e.g. $ env X='() { (a)=>\' sh -c "echo date"; cat echoThanks for bringing this to oss-security. I've added CC to Chet and Tavis on this "reply".I have a fix for this.Can you provide a pointer to the patch? I put together a patch that changed the report_error() to fatal_error() as I wasn't able to see how to reset the parser state. Was just about to send it out...I think Chet is not on oss-security - we should be CC'ing him where appropriate. (I've added the CC on this reply.)I haven't sent the patch out. It's not related to this problem -- this is just the easiest way to get to that code path -- and I still have some investigating to do.
Please note, We have assigned CVE-2014-3659 to this issue. -- Huzaifa Sidhpurwala / Red Hat Product Security Team
Current thread:
- Re: CVE-2014-6271: remote code execution through bash, (continued)
- Re: CVE-2014-6271: remote code execution through bash Tavis Ormandy (Sep 25)
- Re: CVE-2014-6271: remote code execution through bash Chet Ramey (Sep 25)
- Re: CVE-2014-6271: remote code execution through bash Michal Zalewski (Sep 25)
- Re: CVE-2014-6271: remote code execution through bash Florian Weimer (Sep 25)
- Re: CVE-2014-6271: remote code execution through bash Solar Designer (Sep 24)
- Re: CVE-2014-6271: remote code execution through bash Chet Ramey (Sep 24)
- Re: CVE-2014-6271: remote code execution through bash Anthony Liguori (Sep 24)
- Re: CVE-2014-6271: remote code execution through bash Solar Designer (Sep 24)
- Re: CVE-2014-6271: remote code execution through bash Chet Ramey (Sep 24)
- Re: CVE-2014-6271: remote code execution through bash Huzaifa Sidhpurwala (Sep 24)
- Re: CVE-2014-6271: remote code execution through bash Huzaifa Sidhpurwala (Sep 24)