bash-3.2-33.el5.1.x86_64.rpm 修正Bash 漏洞
该安装包为centos 5 方便找不到源的用户
下载后执行rpm -Uvh ./bash-3.2-33.el5.1.x86_64.rpm
测试方法env x='() { :;}; echo vulnerable' bash -c "echo this is a test"
修复前输出:
vulnerable
this is a test
使用修补方案修复后
bash: warning: x: ignoring function definition attempt
bash: error importing function definition for `x'
this is a test
其他系统修复
centos:(最终解决方案)
yum clean all
yum makecache
yum -y update bash
ubuntu:(最终解决方案)
apt-cache gencaches
apt-get -y install --only-upgrade bash
debian:(最终解决方案)
7.5 64bit && 32bit
apt-cache gencaches
apt-get -y install --only-upgrade bash
该安装包为centos 5 方便找不到源的用户
下载后执行rpm -Uvh ./bash-3.2-33.el5.1.x86_64.rpm
测试方法env x='() { :;}; echo vulnerable' bash -c "echo this is a test"
修复前输出:
vulnerable
this is a test
使用修补方案修复后
bash: warning: x: ignoring function definition attempt
bash: error importing function definition for `x'
this is a test
其他系统修复
centos:(最终解决方案)
yum clean all
yum makecache
yum -y update bash
ubuntu:(最终解决方案)
apt-cache gencaches
apt-get -y install --only-upgrade bash
debian:(最终解决方案)
7.5 64bit && 32bit
apt-cache gencaches
apt-get -y install --only-upgrade bash