RE: GNU Bash profile code execution vulnerability enquiry

2020-10-29 Thread Rachel Alderman
28/10/2020 18:21 Subject:[EXTERNAL] Re: GNU Bash profile code execution vulnerability enquiry On 10/28/20 1:11 PM, Rachel Alderman wrote: > Hi Bash Maintainers, > > I've been made aware of a GNU Bash profile code execution vulnerability > https://urldefense.proofpo

Re: GNU Bash profile code execution vulnerability enquiry

2020-10-28 Thread Chet Ramey
On 10/28/20 1:11 PM, Rachel Alderman wrote: > Hi Bash Maintainers, > > I've been made aware of a GNU Bash profile code execution vulnerability > https://exchange.xforce.ibmcloud.com/vulnerabilities/173116 reported last > December (2019-12-16) > Description: GNU Bash could allow a remote attacker

Re: GNU Bash profile code execution vulnerability enquiry

2020-10-28 Thread Eli Schwartz
On 10/28/20 1:11 PM, Rachel Alderman wrote: > Hi Bash Maintainers, > > I've been made aware of a GNU Bash profile code execution vulnerability > https://exchange.xforce.ibmcloud.com/vulnerabilities/173116 reported last > December (2019-12-16) > Description: GNU Bash could allow a remote attacker

Re: GNU Bash profile code execution vulnerability enquiry

2020-10-28 Thread Greg Wooledge
On Wed, Oct 28, 2020 at 05:11:42PM +, Rachel Alderman wrote: > I've been made aware of a GNU Bash profile code execution vulnerability > https://exchange.xforce.ibmcloud.com/vulnerabilities/173116 reported last > December (2019-12-16) This URL doesn't work without Javascript, and with Javasc

GNU Bash profile code execution vulnerability enquiry

2020-10-28 Thread Rachel Alderman
Hi Bash Maintainers, I've been made aware of a GNU Bash profile code execution vulnerability https://exchange.xforce.ibmcloud.com/vulnerabilities/173116 reported last December (2019-12-16) Description: GNU Bash could allow a remote attacker to execute arbitrary code on the system, caused by imp