Re: [PATCH 0/2] Add graft for Bash CVE-2017-5932

guix-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH 0/2] Add graft for Bash CVE-2017-5932

From:	Leo Famulari
Subject:	Re: [PATCH 0/2] Add graft for Bash CVE-2017-5932
Date:	Fri, 10 Feb 2017 13:23:02 +0100
User-agent:	Mutt/1.7.2 (2016-11-26)

On Fri, Feb 10, 2017 at 10:40:56AM +0100, Ludovic Courtès wrote:
> Hello!
> 
> This patch fixes Bash CVE-2017-5932, which is a remote code execution
> vulnerability triggered by file name completion and disclosed on Wednesday:
> 
>   
> https://github.com/jheyens/bash_completion_vuln/raw/master/2017-01-17.bash_completion_report.pdf
>   http://www.openwall.com/lists/oss-security/2017/02/07/9
> 
> I'll apply it today if there are no objections.

Thank you!

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH 0/2] Add graft for Bash CVE-2017-5932, Ludovic Courtès, 2017/02/10
- [PATCH 1/2] gnu: bash: Update patch URL to 4.4., Ludovic Courtès, 2017/02/10
- [PATCH 2/2] gnu: bash: Add graft for patch #7 [fixes CVE-2017-5932]., Ludovic Courtès, 2017/02/10
- Re: [PATCH 0/2] Add graft for Bash CVE-2017-5932, Ludovic Courtès, 2017/02/10
- Re: [PATCH 0/2] Add graft for Bash CVE-2017-5932, Leo Famulari <=

Prev by Date: [PATCH] gnu: ghc: remove unused 'libedit' input
Next by Date: Re: Shadow -> 4.4
Previous by thread: Re: [PATCH 0/2] Add graft for Bash CVE-2017-5932
Next by thread: [PATCH] gnu: icedtea-8: Build keystore without id-ecPublicKey certificates.
Index(es):
- Date
- Thread