CVE-2012-3410

Related Files

Mandriva Linux Security Advisory 2013-032

Posted Apr 5, 2013

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2013-032 - A stack-based buffer overflow flaw was found in the way bash, the GNU Bourne Again shell, expanded certain /dev/fd file names when checking file names and evaluating /dev/fd file names in conditinal command expressions. A remote attacker could provide a specially-crafted Bash script that, when executed, would cause the bash executable to crash. Additionally the official patches 011 to 037 for bash-4.2 has been applied which resolves other issues found, including the CVE-2012-3410 vulnerability. NOTE: This advisory was previousely given the MDVSA-2013:019 identifier by mistake.

tags | advisory, remote, overflow, shell, bash

systems | linux, mandriva

advisories | CVE-2012-3410

SHA-256 | be4cc49cd24a196a81801507077493f6d5b6505240cbd1cdcad5ea0b1cf45094

Download | Favorite | View

Mandriva Linux Security Advisory 2013-032

Posted Apr 5, 2013

Site mandriva.com

Mandriva Linux Security Advisory 2013-032 - A stack-based buffer overflow flaw was found in the way bash, the GNU Bourne Again shell, expanded certain /dev/fd file names when checking file names and evaluating /dev/fd file names in conditional command expressions. A remote attacker could provide a specially-crafted Bash script that, when executed, would cause the bash executable to crash. Additionally the official patches 011 to 037 for bash-4.2 has been applied which resolves other issues found, including the CVE-2012-3410 vulnerability. NOTE: This advisory was previously given the MDVSA-2013:019 identifier by mistake.

advisories | CVE-2012-3410

SHA-256 | be4cc49cd24a196a81801507077493f6d5b6505240cbd1cdcad5ea0b1cf45094

Download | Favorite | View

Gentoo Linux Security Advisory 201210-05

Posted Oct 21, 2012

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201210-5 - Two vulnerabilities have been found in Bash, the worst of which may allow execution of arbitrary code. Versions less than 4.2_p37 are affected.

tags | advisory, arbitrary, vulnerability, bash

systems | linux, gentoo

advisories | CVE-2008-5374, CVE-2012-3410

SHA-256 | 17f31fb3d0141a4bdbf50acddeb15129f21cd91f8086044c6df5270defd48639

Download | Favorite | View

Mandriva Linux Security Advisory 2012-128

Posted Aug 9, 2012

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-128 - A stack-based buffer overflow flaw was found in the way bash, the GNU Bourne Again shell, expanded certain /dev/fd file names when checking file names and evaluating /dev/fd file names in conditional command expressions. A remote attacker could provide a specially-crafted Bash script that, when executed, would cause the bash executable to crash. Additionally the official patches 011 to 037 for bash-4.2 has been applied which resolves other issues found, including the CVE-2012-3410 vulnerability.

tags | advisory, remote, overflow, shell, bash

systems | linux, mandriva

advisories | CVE-2012-3410

SHA-256 | ded651ae3fb8a40f05143e18cd58c2e666fadd104e5caa2a2f8e3f23bba5151f

Download | Favorite | View