FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2014-7169

This CVE name corresponds to:

Entered Topic
2014-09-24 bash -- remote code execution vulnerability

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2014-7169
Phase Assigned(20140924)

Description

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-6271.

References

Source Reference
BUGTRAQ 20141001 NEW VMSA-2014-0010 - VMware product updates address critical Bash security vulnerabilities
FULLDISC 20141001 FW: NEW VMSA-2014-0010 - VMware product updates address critical Bash security vulnerabilities
MLIST [oss-security] 20140924 Re: CVE-2014-6271: remote code execution through bash
MISC http://twitter.com/taviso/statuses/514887394294652929
MISC http://lcamtuf.blogspot.com/2014/09/quick-notes-about-bash-bug-its-impact.html
MISC http://packetstormsecurity.com/files/128517/VMware-Security-Advisory-2014-0010.html
MISC http://packetstormsecurity.com/files/128567/CA-Technologies-GNU-Bash-Shellshock.html
CONFIRM http://support.novell.com/security/cve/CVE-2014-7169.html
CONFIRM https://www.suse.com/support/shellshock/
CONFIRM http://linux.oracle.com/errata/ELSA-2014-1306.html
CONFIRM http://linux.oracle.com/errata/ELSA-2014-3075.html
CONFIRM http://linux.oracle.com/errata/ELSA-2014-3077.html
CONFIRM http://linux.oracle.com/errata/ELSA-2014-3078.html
CONFIRM http://support.apple.com/kb/HT6495
CONFIRM http://www.novell.com/support/kb/doc.php?id=7015701
CONFIRM https://kb.bluecoat.com/index?page=content&id=SA82
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=isg3T1021272
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21685749
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21685914
CONFIRM http://www.novell.com/support/kb/doc.php?id=7015721
CONFIRM http://www.oracle.com/technetwork/topics/security/bashcve-2014-7169-2317675.html
CONFIRM http://www.vmware.com/security/advisories/VMSA-2014-0010.html
CONFIRM https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10648
CONFIRM https://support.apple.com/kb/HT6535
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21686084
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=isg3T1021279
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004879
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004897
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004898
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004915
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21685541
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21685604
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21685733
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21686131
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21686479
CONFIRM http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096315
CONFIRM https://support.citrix.com/article/CTX200217
CONFIRM https://support.citrix.com/article/CTX200223
CONFIRM https://support.f5.com/kb/en-us/solutions/public/15000/600/sol15629.html
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=isg3T1021361
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21686246
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21686445
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21686494
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21687079
CONFIRM https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk102673&src=securityAlerts
CONFIRM http://www.qnap.com/i/en/support/con_show.php?cid=61
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21686447
CONFIRM http://advisories.mageia.org/MGASA-2014-0393.html
CONFIRM https://access.redhat.com/articles/1200223
APPLE APPLE-SA-2014-10-16-1
CISCO 20140926 GNU Bash Environmental Variable Command Injection Vulnerability
DEBIAN DSA-3035
HP HPSBGN03117
HP HPSBHF03119
HP HPSBHF03124
HP HPSBST03122
HP HPSBGN03138
HP HPSBHF03125
HP HPSBMU03133
HP HPSBGN03141
HP HPSBGN03142
HP HPSBHF03146
HP HPSBMU03143
HP HPSBMU03144
HP HPSBST03129
HP HPSBST03131
HP HPSBST03157
HP HPSBHF03145
HP HPSBMU03165
HP HPSBMU03182
HP HPSBST03154
HP HPSBST03155
HP HPSBST03181
HP HPSBST03148
HP HPSBMU03217
HP HPSBMU03245
HP HPSBMU03246
HP HPSBOV03228
HP SSRT101711
HP SSRT101742
HP SSRT101827
HP HPSBGN03233
HP SSRT101739
HP SSRT101868
HP HPSBMU03220
HP SSRT101819
HP HPSBST03195
MANDRIVA MDVSA-2015:164
REDHAT RHSA-2014:1306
REDHAT RHSA-2014:1311
REDHAT RHSA-2014:1312
REDHAT RHSA-2014:1354
SUSE SUSE-SU-2014:1247
SUSE SUSE-SU-2014:1259
SUSE openSUSE-SU-2014:1229
SUSE openSUSE-SU-2014:1242
SUSE openSUSE-SU-2014:1254
SUSE SUSE-SU-2014:1287
SUSE openSUSE-SU-2014:1308
SUSE openSUSE-SU-2014:1310
UBUNTU USN-2363-1
UBUNTU USN-2363-2
CERT TA14-268A
CERT-VN VU#252743
JVN JVN#55667175
JVNDB JVNDB-2014-000126
SECUNIA 59737
SECUNIA 61479
SECUNIA 61618
SECUNIA 61619
SECUNIA 61622
SECUNIA 61626
SECUNIA 61641
SECUNIA 61676
SECUNIA 61700
SECUNIA 59907
SECUNIA 61283
SECUNIA 61485
SECUNIA 61503
SECUNIA 61552
SECUNIA 61565
SECUNIA 61603
SECUNIA 61633
SECUNIA 61643
SECUNIA 61654
SECUNIA 61703
SECUNIA 61711
SECUNIA 61715
SECUNIA 60947
SECUNIA 61188
SECUNIA 58200
SECUNIA 60034
SECUNIA 60055
SECUNIA 60193
SECUNIA 60325
SECUNIA 61065
SECUNIA 61128
SECUNIA 61129
SECUNIA 61287
SECUNIA 61312
SECUNIA 61313
SECUNIA 61328
SECUNIA 61442
SECUNIA 61471
SECUNIA 61550
SECUNIA 61780
SECUNIA 61816
SECUNIA 61855
SECUNIA 61857
SECUNIA 60024
SECUNIA 60063
SECUNIA 60044
SECUNIA 60433
SECUNIA 61291
SECUNIA 61873
SECUNIA 62312
SECUNIA 62343