[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

update

Subject: update
From: redkrieg at gmail.com (Brandon Whaley)
Date: Wed, 24 Sep 2014 18:17:55 -0400
In-reply-to: <CAGfsgR1rkC_mdAQYsbNusegcbAm-zakvxohoqbQw5e_d0TOoUw@mail.gmail.com>
References: <m24mvwq1oz.wl%[email protected]> <CAGfsgR1rkC_mdAQYsbNusegcbAm-zakvxohoqbQw5e_d0TOoUw@mail.gmail.com>

The scope of the issue isn't limited to SSH, that's just a popular
example people are using.  Any program calling bash could potentially
be vulnerable.

On Wed, Sep 24, 2014 at 6:11 PM, Jim Popovitch <jimpop at gmail.com> wrote:
>> debian/ubuntu admins may want to apt-get update/upgrade or whatever
>
> debian/ubuntu aren't really all that immediately impacted.
>
> $ grep "bash$" /etc/passwd | wc -l
> 2
>
>  ^^ both of those are user accounts, not system/daemon accounts.
>
> -Jim P.

Follow-Ups:
- update
  - From: jimpop at gmail.com (Jim Popovitch)

References:
- update
  - From: randy at psg.com (Randy Bush)
- update
  - From: jimpop at gmail.com (Jim Popovitch)

Prev by Date: update
Next by Date: update
Previous by thread: update
Next by thread: update
Index(es):
- Date
- Thread