bash security and bug fix update

2021-05-2500:00:00

linux.oracle.com

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

JSON

[4.4.19-14]

Fix hang when limit for nproc is very high
Resolves: #1890888
[4.4.19-13]
Correctly drop saved UID when effective UID is not equal to its real UID
Resolves: #1793943

OSVersionArchitecturePackageVersionFilename
oracle linux8srcbash< 4.4.19-14.el8bash-4.4.19-14.el8.src.rpm
oracle linux8aarch64bash< 4.4.19-14.el8bash-4.4.19-14.el8.aarch64.rpm
oracle linux8aarch64bash-doc< 4.4.19-14.el8bash-doc-4.4.19-14.el8.aarch64.rpm
oracle linux8srcbash< 4.4.19-14.el8bash-4.4.19-14.el8.src.rpm
oracle linux8x86_64bash< 4.4.19-14.el8bash-4.4.19-14.el8.x86_64.rpm
oracle linux8x86_64bash-doc< 4.4.19-14.el8bash-doc-4.4.19-14.el8.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
oracle linux	8	src	bash	< 4.4.19-14.el8	bash-4.4.19-14.el8.src.rpm
oracle linux	8	aarch64	bash	< 4.4.19-14.el8	bash-4.4.19-14.el8.aarch64.rpm
oracle linux	8	aarch64	bash-doc	< 4.4.19-14.el8	bash-doc-4.4.19-14.el8.aarch64.rpm
oracle linux	8	src	bash	< 4.4.19-14.el8	bash-4.4.19-14.el8.src.rpm
oracle linux	8	x86_64	bash	< 4.4.19-14.el8	bash-4.4.19-14.el8.x86_64.rpm
oracle linux	8	x86_64	bash-doc	< 4.4.19-14.el8	bash-doc-4.4.19-14.el8.x86_64.rpm