Last active
August 29, 2015 14:06
-
-
Save chrishein/fbca665930b7f20e64a1 to your computer and use it in GitHub Desktop.
Get bash for AMD64 machines from Ubuntu trusty (14.04LTS) packages for installing to other EOL versions (such as 13.10). CVE-2014-6271
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# http://packages.ubuntu.com/trusty/bash | |
# Check dependencies versions | |
dpkg -s dash | grep Version | |
dpkg -s libc6 | grep Version | |
dpkg -s base-files | grep Version | |
dpkg -s debianutils | grep Version | |
dpkg -s bash-completion | grep Version | |
# Download and install | |
wget http://security.ubuntu.com/ubuntu/pool/main/b/bash/bash_4.3-7ubuntu1.3_amd64.deb | |
sudo dpkg -i bash_4.3-7ubuntu1.3_amd64.deb | |
dpkg -s bash | grep Version | |
# Verify patched for Shellshock (CVE-2014-6271) | |
env x='() { :;}; echo vulnerable' bash -c 'echo hello' | |
#Verify patched for Aftershock (CVE-2014-7169) | |
env var='() {(a)=>\' bash -c "echo date"; cat echo; rm -f echo | |
# Some days after ... switch to a LTS Ubuntu version |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment