Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Производитель ПО
Наименование ПО
bash
(any)
bash-doc
(any)
bash-x86
(any)
libreadline5
(any)
libreadline5-32bit
(any)
libreadline5-x86
(any)
readline
(any)
readline-32bit
(any)
readline-devel
(any)
readline-devel-32bit
(any)
readline-doc
(any)
Описание
Уведомление безопасности об уязвимостях SUSE Linux Enterprise Software Development Kit 11 SP3, SUSE Linux Enterprise Server 11 SP2 LTSS, SUSE Linux Enterprise Server 10 SP4 LTSS, SUSE Linux Enterprise Server 11 SP3 for VMware, SUSE Linux Enterprise Server 10 SP3 LTSS, SUSE Linux Enterprise Server 11 SP3, SUSE Linux Enterprise Server 11 SP1 LTSS, SUSE Linux Enterprise Desktop 11 SP3
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
SUSE Linux Enterprise Software Development Kit 11 SP3:
ppc64, s390x, x86_64:
readline-devel-32bit - 5.2-147.22.1
SUSE Linux Enterprise Server 10 SP3 LTSS:
i586, s390x, x86_64:
readline-devel - 5.1-24.34.1
bash - 3.1-24.34.1
readline - 5.1-24.34.1
SUSE Linux Enterprise Server 10 SP4 LTSS:
i586, s390x, x86_64:
readline-devel - 5.1-24.34.1
bash - 3.1-24.34.1
readline - 5.1-24.34.1
SUSE Linux Enterprise Server 11 SP3 for VMware:
i586, x86_64:
bash - 3.2-147.22.1
readline-doc - 5.2-147.22.1
libreadline5 - 5.2-147.22.1
bash-doc - 3.2-147.22.1
SUSE Linux Enterprise Server 11 SP2 LTSS:
i586, s390x, x86_64:
bash-doc - 3.2-147.14.22.1
libreadline5 - 5.2-147.14.22.1
bash - 3.2-147.14.22.1
readline-doc - 5.2-147.14.22.1
SUSE Linux Enterprise Server 11 SP3:
ppc64, s390x, x86_64:
libreadline5-32bit - 5.2-147.22.1
SUSE Linux Enterprise Server 11 SP1 LTSS:
i586, s390x, x86_64:
bash-doc - 3.2-147.14.22.1
libreadline5 - 5.2-147.14.22.1
bash - 3.2-147.14.22.1
readline-doc - 5.2-147.14.22.1
SUSE Linux Enterprise Desktop 11 SP3:
i586, x86_64:
bash - 3.2-147.22.1
readline-doc - 5.2-147.22.1
libreadline5 - 5.2-147.22.1
bash-doc - 3.2-147.22.1
SUSE Linux Enterprise Software Development Kit 11 SP3:
ppc64, s390x, x86_64:
readline-devel-32bit - 5.2-147.22.1
SUSE Linux Enterprise Server 10 SP3 LTSS:
i586, s390x, x86_64:
readline-devel - 5.1-24.34.1
bash - 3.1-24.34.1
readline - 5.1-24.34.1
SUSE Linux Enterprise Server 10 SP4 LTSS:
i586, s390x, x86_64:
readline-devel - 5.1-24.34.1
bash - 3.1-24.34.1
readline - 5.1-24.34.1
SUSE Linux Enterprise Server 11 SP3 for VMware:
i586, x86_64:
bash - 3.2-147.22.1
readline-doc - 5.2-147.22.1
libreadline5 - 5.2-147.22.1
bash-doc - 3.2-147.22.1
SUSE Linux Enterprise Server 11 SP2 LTSS:
i586, s390x, x86_64:
bash-doc - 3.2-147.14.22.1
libreadline5 - 5.2-147.14.22.1
bash - 3.2-147.14.22.1
readline-doc - 5.2-147.14.22.1
SUSE Linux Enterprise Server 11 SP3:
ppc64, s390x, x86_64:
libreadline5-32bit - 5.2-147.22.1
SUSE Linux Enterprise Server 11 SP1 LTSS:
i586, s390x, x86_64:
bash-doc - 3.2-147.14.22.1
libreadline5 - 5.2-147.14.22.1
bash - 3.2-147.14.22.1
readline-doc - 5.2-147.14.22.1
SUSE Linux Enterprise Desktop 11 SP3:
i586, x86_64:
bash - 3.2-147.22.1
readline-doc - 5.2-147.22.1
libreadline5 - 5.2-147.22.1
bash-doc - 3.2-147.22.1
Ссылки
http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00042.html
https://bugzilla.suse.com/show_bug.cgi?id=898346
https://bugzilla.suse.com/show_bug.cgi?id=898603
https://bugzilla.suse.com/show_bug.cgi?id=898604
http://download.suse.com/patch/finder/?keywords=01d7685e480d31be1641e84591918b9e
http://download.suse.com/patch/finder/?keywords=1143502d673561f6e5895393ba93df6f
http://download.suse.com/patch/finder/?keywords=7c3a2e9a2aa61a2702de17e1ed7a7f43
http://download.suse.com/patch/finder/?keywords=b6868a6fc575e34338a7d5fd7491f09f
http://download.suse.com/patch/finder/?keywords=d6f3fbe6b7cd7f9bd580be31dd2ada90
Источник: CVE
Наименование: CVE-2014-7186
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7186
Источник: CVE
Наименование: CVE-2014-7169
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7169
Источник: CVE
Наименование: CVE-2014-7187
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7187
https://bugzilla.suse.com/show_bug.cgi?id=898346
https://bugzilla.suse.com/show_bug.cgi?id=898603
https://bugzilla.suse.com/show_bug.cgi?id=898604
http://download.suse.com/patch/finder/?keywords=01d7685e480d31be1641e84591918b9e
http://download.suse.com/patch/finder/?keywords=1143502d673561f6e5895393ba93df6f
http://download.suse.com/patch/finder/?keywords=7c3a2e9a2aa61a2702de17e1ed7a7f43
http://download.suse.com/patch/finder/?keywords=b6868a6fc575e34338a7d5fd7491f09f
http://download.suse.com/patch/finder/?keywords=d6f3fbe6b7cd7f9bd580be31dd2ada90
Источник: CVE
Наименование: CVE-2014-7186
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7186
Источник: CVE
Наименование: CVE-2014-7169
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7169
Источник: CVE
Наименование: CVE-2014-7187
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7187