openembedded-core.git - Mirror of openembedded-core

diff options

author	Catalin Popeanga <Catalin.Popeanga@enea.com>	2014-10-09 14:24:53 +0200
committer	Paul Eggleton <paul.eggleton@linux.intel.com>	2014-10-12 21:29:14 +0100
commit	ae653aed4c6b7d8075cd464edcd2e01237bfc105 (patch)
tree	aa134f8d93c3f94ec11c094c7c79df3b024db32d /scripts/postinst-intercepts
parent	32818a104ae99a5795d91a2960d48d433d542dee (diff)
download	openembedded-core-ae653aed4c6b7d8075cd464edcd2e01237bfc105.tar.gz openembedded-core-ae653aed4c6b7d8075cd464edcd2e01237bfc105.tar.bz2 openembedded-core-ae653aed4c6b7d8075cd464edcd2e01237bfc105.zip

bash: Fix for CVE-2014-6277

Follow up bash42-049 to parse properly function definitions in the values of environment variables, to not allow remote attackers to execute arbitrary code or to cause a denial of service. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6277 (From OE-Core daisy rev: 85961bcf81650992259cebb0ef1f1c6cdef3fefa) Signed-off-by: Catalin Popeanga <Catalin.Popeanga@enea.com> Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com>

Diffstat (limited to 'scripts/postinst-intercepts')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: