logo
DATABASE RESOURCES PRICING ABOUT US

OracleVM 3.3 / 3.4 : bash (OVMSA-2017-0050)

Description

The remote OracleVM system is missing necessary patches to address critical security updates : - Fix signal handling in read builtin Resolves: #1421926 - CVE-2016-9401 - Fix crash when '-' is passed as second sign to popd Resolves: #1396383 - CVE-2016-7543 - Fix for arbitrary code execution via SHELLOPTS+PS4 variables Resolves: #1379630 - CVE-2016-0634 - Fix for arbitrary code execution via malicious hostname Resolves: #1377613 - Avoid crash in parameter expansion while expanding long strings Resolves: #1359142 - Stop reading input when SIGHUP is received Resolves: #1325753 - Bash leaks memory while doing pattern removal in parameter expansion Resolves: #1283829 - Fix a race condition in saving bash history on shutdown Resolves: #1325753 - Bash shouldn't ignore bash --debugger without a dbger installed Related: #1260568 - Wrong parsing inside for loop and brackets Resolves: #1207803 - IFS incorrectly splitting herestrings Resolves: #1250070 - Case in a for loop in a subshell causes a syntax error Resolves: #1240994 - Bash shouldn't ignore bash --debugger without a dbger installed Resolves: #1260568 - Bash leaks memory when repeatedly doing a pattern-subst Resolves: #1207042 - Bash hangs when a signal is received Resolves: #868846


Related