Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Производитель ПО
Наименование ПО
bash
(any)
bash-doc
(any)
bash-x86
(any)
libreadline5
(any)
libreadline5-32bit
(any)
libreadline5-x86
(any)
readline
(any)
readline-32bit
(any)
readline-devel
(any)
readline-devel-32bit
(any)
readline-doc
(any)
Описание
Уведомление безопасности об уязвимостях SUSE Linux Enterprise Software Development Kit 11 SP3, SUSE Linux Enterprise Server 11 SP2 LTSS, SUSE Linux Enterprise Server 10 SP4 LTSS, SUSE Linux Enterprise Server 11 SP3 for VMware, SUSE Linux Enterprise Server 11 SP3, SUSE Linux Enterprise Desktop 11 SP3
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
SUSE Linux Enterprise Software Development Kit 11 SP3:
ppc64, s390x, x86_64:
readline-devel-32bit - 5.2-147.20.1
SUSE Linux Enterprise Server 11 SP2 LTSS:
i586, s390x, x86_64:
bash-doc - 3.2-147.14.20.1
libreadline5 - 5.2-147.14.20.1
readline-doc - 5.2-147.14.20.1
bash - 3.2-147.14.20.1
SUSE Linux Enterprise Server 10 SP4 LTSS:
i586, s390x, x86_64:
readline - 5.1-24.32.1
bash - 3.1-24.32.1
readline-devel - 5.1-24.32.1
SUSE Linux Enterprise Server 11 SP3 for VMware:
i586, x86_64:
bash - 3.2-147.20.1
bash-doc - 3.2-147.20.1
readline-doc - 5.2-147.20.1
libreadline5 - 5.2-147.20.1
SUSE Linux Enterprise Server 11 SP3:
ppc64, s390x, x86_64:
libreadline5-32bit - 5.2-147.20.1
SUSE Linux Enterprise Desktop 11 SP3:
i586, x86_64:
bash - 3.2-147.20.1
bash-doc - 3.2-147.20.1
readline-doc - 5.2-147.20.1
libreadline5 - 5.2-147.20.1
SUSE Linux Enterprise Software Development Kit 11 SP3:
ppc64, s390x, x86_64:
readline-devel-32bit - 5.2-147.20.1
SUSE Linux Enterprise Server 11 SP2 LTSS:
i586, s390x, x86_64:
bash-doc - 3.2-147.14.20.1
libreadline5 - 5.2-147.14.20.1
readline-doc - 5.2-147.14.20.1
bash - 3.2-147.14.20.1
SUSE Linux Enterprise Server 10 SP4 LTSS:
i586, s390x, x86_64:
readline - 5.1-24.32.1
bash - 3.1-24.32.1
readline-devel - 5.1-24.32.1
SUSE Linux Enterprise Server 11 SP3 for VMware:
i586, x86_64:
bash - 3.2-147.20.1
bash-doc - 3.2-147.20.1
readline-doc - 5.2-147.20.1
libreadline5 - 5.2-147.20.1
SUSE Linux Enterprise Server 11 SP3:
ppc64, s390x, x86_64:
libreadline5-32bit - 5.2-147.20.1
SUSE Linux Enterprise Desktop 11 SP3:
i586, x86_64:
bash - 3.2-147.20.1
bash-doc - 3.2-147.20.1
readline-doc - 5.2-147.20.1
libreadline5 - 5.2-147.20.1
Ссылки
http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00029.html
https://bugzilla.suse.com/896776
http://download.suse.com/patch/finder/?keywords=083b250348bb7e8f6f3e4afc8a22fb86
http://download.suse.com/patch/finder/?keywords=5aa8890d421145a022bf2205e01b3c68
http://download.suse.com/patch/finder/?keywords=c0975ef449afcaa55a27dfd2df712a09
Источник: CVE
Наименование: CVE-2014-6271
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6271
Источник: CVE
Наименование: CVE-2014-0475
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0475
https://bugzilla.suse.com/896776
http://download.suse.com/patch/finder/?keywords=083b250348bb7e8f6f3e4afc8a22fb86
http://download.suse.com/patch/finder/?keywords=5aa8890d421145a022bf2205e01b3c68
http://download.suse.com/patch/finder/?keywords=c0975ef449afcaa55a27dfd2df712a09
Источник: CVE
Наименование: CVE-2014-6271
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6271
Источник: CVE
Наименование: CVE-2014-0475
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0475