bash: Fix for CVE-2014-6277 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Catalin Popeanga <Catalin.Popeanga@enea.com>	2014-10-09 14:24:53 +0200
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2014-10-10 18:06:09 +0100
commit	5dd12beccd4a8fb62836247171b112dfa334f8df (patch)
tree	4a29a732e1b20f695436cb61ad1066d63f147e0b /scripts/lib
parent	1d21eaf4e0b4161aac45e30c20f69e603dadcf48 (diff)
download	poky-5dd12beccd4a8fb62836247171b112dfa334f8df.tar.gz

bash: Fix for CVE-2014-6277

Follow up bash43-026 to parse properly function definitions in the values of environment variables, to not allow remote attackers to execute arbitrary code or to cause a denial of service. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6277 (From OE-Core rev: 85961bcf81650992259cebb0ef1f1c6cdef3fefa) Signed-off-by: Catalin Popeanga <Catalin.Popeanga@enea.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'scripts/lib')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: