Opened 6 years ago

Closed 6 years ago

#1412 closed task (fixed)

Remote Code Execution via BASH Vulnerability

Reported by: darkblueb Owned by: sac@…
Priority: critical Milestone:
Component: Systems Admin Keywords: SAC
Cc:

Description

thread is here:

http://seclists.org/oss-sec/2014/q3/649

All public-facing OSGeo machines need to be checked for this

Change History (2)

comment:1 Changed 6 years ago by wildintellect

Fix should be applied to all machines:

sudo apt-get update
sudo apt-get install bash

install bash will upgrade the already installed bash, but not accidentally upgrade anything else that might not be ready for an upgrade.

comment:2 Changed 6 years ago by martin

Resolution: fixed
Status: newclosed

All done - except "tracsvn", which is still Debian 5 (Lenny).

Note: See TracTickets for help on using tickets.