|
|
Subscribe / Log in / New account

bash: multiple vulnerabilities

Package(s):bash CVE #(s):CVE-2010-0002 CVE-2008-5374
Created:January 14, 2010 Updated:September 23, 2011
Description: From the Mandriva alert:

A vulnerability have been discovered in Mandriva bash package, which could allow a malicious user to hide files from the ls command, or garble its output by crafting files or directories which contain special characters or escape sequences (CVE-2010-0002). This update fixes the issue by disabling the display of control characters by default.

Additionally, this update fixes the unsafe file creation in bash-doc sample scripts (CVE-2008-5374).

Alerts:
Gentoo 201210-05 bash 2012-10-19
CentOS CESA-2011:1073 bash 2011-09-22
Scientific Linux SL-bash-20110721 bash 2011-07-21
Red Hat RHSA-2011:1073-01 bash 2011-07-21
Red Hat RHSA-2011:0261-01 bash 2011-02-16
Mandriva MDVSA-2010:004 bash 2010-01-13
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds