Описание
The redirection implementation in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have unspecified other impact via crafted use of here documents, aka the "redir_stack" issue.
It was discovered that the fixed-sized redir_stack could be forced to overflow in the Bash parser, resulting in memory corruption, and possibly leading to arbitrary code execution when evaluating untrusted input that would not otherwise be run as code.
Отчет
A patch for this issue was applied to the bash packages in Red Hat Enterprise Linux via RHSA-2014:1306, RHSA-2014:1311, and RHSA-2014:1312. The errata do not mention the CVE in the description, as the CVE was only assigned after those updates were released.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 3 | bash | Affected | ||
| Red Hat Enterprise Linux 6 | guest-images | Affected | ||
| Red Hat Enterprise Linux 7 | rhel-guest-image | Affected | ||
| Red Hat Enterprise Linux Extended Update Support 5.6 | bash | Affected | ||
| Red Hat Enterprise Linux 4 Extended Lifecycle Support | bash | Fixed | RHSA-2014:1311 | 26.09.2014 |
| Red Hat Enterprise Linux 5 | bash | Fixed | RHSA-2014:1306 | 26.09.2014 |
| Red Hat Enterprise Linux 5.6 Long Life | bash | Fixed | RHSA-2014:1311 | 26.09.2014 |
| Red Hat Enterprise Linux 5.9 Extended Update Support | bash | Fixed | RHSA-2014:1311 | 26.09.2014 |
| Red Hat Enterprise Linux 6 | bash | Fixed | RHSA-2014:1306 | 26.09.2014 |
| Red Hat Enterprise Linux 6.2 Advanced Update Support | bash | Fixed | RHSA-2014:1311 | 26.09.2014 |
Показывать по
Дополнительная информация
Статус:
EPSS
4.6 Medium
CVSS2
Связанные уязвимости
The redirection implementation in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have unspecified other impact via crafted use of here documents, aka the "redir_stack" issue.
The redirection implementation in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have unspecified other impact via crafted use of here documents, aka the "redir_stack" issue.
The redirection implementation in parse.y in GNU Bash through 4.3 bash ...
The redirection implementation in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have unspecified other impact via crafted use of here documents, aka the "redir_stack" issue.
Уязвимость интерпретатора командной строки GNU Bash, позволяющая злоумышленнику вызвать отказ в обслуживании либо выполнить произвольный код
EPSS
4.6 Medium
CVSS2