On 9/14/18 5:52 PM, j...@kitenet.net wrote:
> Bash Version: 4.4
> Patch Level: 23
> Release Status: release
>
> Description:
>
> CVE-2018-7738 was caused by a bash completion script using compgen -W
> with untrusted input. For some reason compgen -W evals its input:
>
> $ compgen -W '`cat
On 9/11/18 8:17 PM, Viktor Dukhovni wrote:
>
> Bash Version: 4.4
> Patch Level: 23
> Release Status: release
>
> Description:
> Intuitevely, (and confirmed behaviour of "csh" whose history
> substitution bash emulates), after a command of the form:
>
> $ grep foo < /tm
The people affected by this security hole will certianly find it
surprising, but if you're not concerned by unnecessary features that
encoruage security holes, I won't try to argue.
--
see shy jo
signature.asc
Description: PGP signature
On 9/14/18 3:26 AM, Eduardo A. Bustamante López wrote:
> Found the following two cases by fuzzing with AFL:
Thanks for the report. They are the same problem.
Chet
--
``The lyf so short, the craft so long to lerne.'' - Chaucer
``Ars longa, vita brevis'' - Hippocrates
Chet Ramey,
On Sat, Sep 15, 2018 at 8:15 PM Chet Ramey wrote:
(...)
> Thanks for the report. They are the same problem.
Thanks Chet. Do you have a patch for the issue? I have a few other
cases but I'm not sure if they're all due to the same cause.
