it.ucsf.edu

Security Update:Critical Bash Vulnerability Affects Linux, Unix, and Mac OS X

Status Type

Security Update

Date and Time

Wednesday, September 24, 2014 - 14:27

Reason

Security Update

Impact

Linux, Unix and Mac OS X users

WHAT HAPPENED?

A critical vulnerability in the Bourne again shell, simply known as Bash has been discovered and administrators are being urged to patch immediately.

Advanced Users: For a complete description of the vulnerability and vulnerable software and versions refer to National Vulnerability Database CVE-2014-6271 - http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6271


AFFECTED SYSTEMS:

  • Linux
  • Unix
  • Mac OS X



WHAT'S THE PROBLEM?

Bash is present in most Linux and UNIX distributions and Apple's Mac OS X. If exploited, the vulnerability may allow remote attackers to execute arbitrary code.


HOW DO I PROTECT MY COMPUTER?

Update your software

  1. If IT Field Services or you have other IT support, no action on your part is required.
  2. If you do not have IT support, check with your Operating Software vendor for the update.
  3. If you’re running Red Hat, CentOS and Fedora Andrew Philipoff provided the update following update links:



RELATED LINKS