漏洞类别:Ubuntu
漏洞等级: 
漏洞信息
It was discovered that Bash incorrectly expanded the hostname when displaying the prompt.
It was discovered that Bash incorrectly handled the SHELLOPTS and PS4 environment variables.
It was discovered that Bash incorrectly handled the popd command.
It was discovered that Bash incorrectly handled path autocompletion.
漏洞危害
If a remote attacker were able to modify a hostname, this flaw could be exploited to execute arbitrary code. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 16.10. (CVE-2016-0634)
A local attacker could use this issue to execute arbitrary code with root privileges. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 16.10. (CVE-2016-7543)
A remote attacker could possibly use this issue to bypass restricted shells. (CVE-2016-9401)
A local attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 17.04. (CVE-2017-5932)
解决方案
Refer to Ubuntu advisory USN-3294-1 for affected packages and patching details, or update with your package manager.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
USN-3294-1: 16.04 (Xenial) on src (bash)
USN-3294-1: 17.04 (zesty) on src (bash)
0day
文章评论