bash velnerability
Bryan Drewery
bdrewery at FreeBSD.org
Thu Sep 25 16:22:25 UTC 2014
On 9/25/2014 11:13 AM, Jung-uk Kim wrote:
> On 2014-09-25 02:54:06 -0400, Koichiro Iwao wrote:
>> Please let me make corrections. The "shellshock" bash
>> vulnerabilities are described by 2 CVEs. - CVE-2014-6271 -
>> CVE-2014-7169
>>
>> The first CVE is already fixed in latest freebsd ports tree
>> (r369185), so far the second CVE is not fixed yet.
>
> CVE-2014-7169 is fixed now (r369261).
>
> http://svnweb.freebsd.org/changeset/ports/369261
>
> Note the commit log says CVE-2014-3659 but it was actually reassigned
> as CVE-2014-7169.
Thanks, vuxml updated.
--
Regards,
Bryan Drewery
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/freebsd-ports/attachments/20140925/1cc2e336/attachment.sig>
More information about the freebsd-ports
mailing list