The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Vulnerability of bash: two denial of service

Synthesis of the vulnerability

An attacker can use several vulnerabilities of bash.
Severity of this alert: 1/4.
Number of vulnerabilities in this bulletin: 2.
Creation date: 29/09/2014.
Références of this alert: 193355, 193866, 194029, 194064, 194669, 480931, c04475942, c04479492, CERTFR-2014-AVI-403, CERTFR-2014-AVI-415, CERTFR-2014-AVI-480, CTX200217, CTX200223, CVE-2014-7186, CVE-2014-7187, ESA-2014-111, ESA-2014-123, ESA-2014-124, ESA-2014-125, ESA-2014-126, ESA-2014-127, ESA-2014-128, ESA-2014-133, ESA-2014-136, ESA-2014-150, ESA-2014-151, ESA-2014-152, ESA-2014-162, HPSBGN03138, HPSBMU03144, JSA10648, JSA10661, MDVSA-2015:164, openSUSE-SU-2014:1229-1, openSUSE-SU-2014:1242-1, openSUSE-SU-2014:1248-1, openSUSE-SU-2014:1308-1, openSUSE-SU-2014:1310-1, RHSA-2014:1311-01, RHSA-2014:1312-01, RHSA-2014:1354-01, RHSA-2014:1865-01, SB10085, sk102673, SOL15629, SSA-860967, SUSE-SU-2014:1247-1, SUSE-SU-2014:1247-2, T1021272, USN-2364-1, VIGILANCE-VUL-15419, VMSA-2014-0010, VMSA-2014-0010.10, VMSA-2014-0010.11, VMSA-2014-0010.12, VMSA-2014-0010.13, VMSA-2014-0010.2, VMSA-2014-0010.4, VMSA-2014-0010.7, VMSA-2014-0010.8, VMSA-2014-0010.9.

Description of the vulnerability

Several vulnerabilities were announced in bash.

An attacker can force a read at an invalid address in redir_stack, in order to trigger a denial of service. [severity:1/4; CVE-2014-7186]

An attacker can generate a buffer overflow of one byte in word_lineno, in order to trigger a denial of service, and possibly to execute code. [severity:1/4; CVE-2014-7187]
Full Vigil@nce bulletin... (Free trial)

This vulnerability announce impacts software or systems such as GAiA, CheckPoint IP Appliance, IPSO, SecurePlatform, CheckPoint Security Appliance, CheckPoint Smart-1, CheckPoint VSX-1, XenServer, Clearswift Email Gateway, Clearswift Web Gateway, Avamar, EMC CAVA, EMC CEE, EMC CEPA, Celerra FAST, Celerra NS, Celerra NX4, EMC CMDCE, Connectrix Switch, NetWorker, PowerPath, Unisphere EMC, VNX Operating Environment, VNX Series, BIG-IP Hardware, TMOS, HP Operations, AIX, IVE OS, Junos Space, MAG Series by Juniper, NSM Central Manager, NSMXpress, Juniper SA, Juniper UAC, McAfee Email and Web Security, McAfee Email Gateway, McAfee MOVE AntiVirus, McAfee NSP, McAfee NGFW, McAfee Web Gateway, openSUSE, Solaris, RealPresence Collaboration Server, RealPresence Distributed Media Application, Polycom VBP, RHEL, RSA Authentication Manager, ROX, RuggedSwitch, Stonesoft NGFW/VPN, SUSE Linux Enterprise Desktop, SLES, Ubuntu, Unix (platform) ~ not comprehensive, ESX, vCenter Server, VMware vSphere.

Our Vigil@nce team determined that the severity of this cybersecurity threat is low.

The trust level is of type confirmed by the editor, with an origin of document.

This bulletin is about 2 vulnerabilities.

An attacker with a expert ability can exploit this computer threat bulletin.

Solutions for this threat

bash: patch for denial of service.
A patch is available in information sources.

AIX Toolbox for Linux: solution for bash.
The solution is indicated in information sources.

Check Point: solution for bash.
The solution is indicated in information sources.

Citrix: solution for bash.
The solution is indicated in information sources.

Clearswift SECURE Email Gateway: version 3.8.3.
The version 3.8.3 is fixed:
  http://www.clearswift.net/

Clearswift SECURE Web Gateway: version 3.2.3.
The version 3.2.3 is fixed:
  http://www.clearswift.net/

EMC: solution for bash.
The solution is indicated in information sources.

EMC Unisphere: solution for bash.
The solution is indicated in information sources.

F5 BIG-IP: solution for bash.
The solution is indicated in information sources.

HP Operation Agent Virtual Appliance: patch for Bash.
A patch is available:
  https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetsearch/document/KM01206384

HP Operations Analytics: patch for Bash.
A patch is available:
  https://softwaresupport.hp.com/group/softwaresupport/search-result/-/facetsearch/document/KM01198565

Juniper NSM: upgrade package v3.
A patch is available:
  https://webdownload.juniper.net/swdl/dl/secure/site/1/record/56122.html
  https://webdownload.juniper.net/swdl/dl/secure/site/1/record/56123.html

Juniper: solution for bash.
The solution is indicated in information sources.

Mandriva BS2: new bash packages.
New packages are available:
  Mandriva BS2: bash 4.2-53.1.mbs2

McAfee: solution for bash.
The solution is indicated in information sources.

openSUSE 12.3: new bash packages.
New packages are available:
  openSUSE 12.3: bash 4.2-61.19.1
This package replaces the ones mentionned in the bulletins VIGILANCE-SOL-36803 et VIGILANCE-SOL-36804.

openSUSE 13.1: new bash packages.
New packages are available:
  openSUSE 13.1: bash 4.2-68.12.1
This package replaces the ones mentionned in the bulletins VIGILANCE-SOL-36803 et VIGILANCE-SOL-36804.

openSUSE: new bash packages.
New packages are available:
  openSUSE 12.3: bash 4.2-61.15.1
  openSUSE 13.1: bash 4.2-68.8.1

Polycom: solution for bash.
The solution is indicated in information sources.

RHEL: new bash packages (29/09/2014).
New packages are available, as indicated in information sources.

RHEV-M 3.4: new rhev-hypervisor6 packages.
New packages are available:
  RHEL 6: rhev-hypervisor6 6.5-20140930.1.el6ev

RSA Authentication Manager: solution for bash.
The solution is indicated in information sources.

Siemens ROX: solution for bash.
The solution is indicated in information sources.

Solaris: patch for bash.
A patch is available:
  https://support.oracle.com/rs?type=doc&id=1930090.1
A patch is available:
  Solaris 11.2 : version 11.2.2.8.0
  Solaris 10 :
    SPARC: 126546-07
    X86: 126547-07
  Solaris 9
    SPARC: 149079-03
    X86: 149080-02

SUSE LE: new bash packages.
New packages are available:
  SUSE LE 10: bash 3.1-24.34.1
  SUSE LE 11: bash 3.2-147.22.1

Ubuntu: new bash packages.
New packages are available:
  Ubuntu 14.04 LTS: bash 4.3-7ubuntu1.4
  Ubuntu 12.04 LTS: bash 4.2-2ubuntu2.5
  Ubuntu 10.04 LTS: bash 4.1-2ubuntu3.4

VMware: solution for bash.
The solution is indicated in information sources.
Full Vigil@nce bulletin... (Free trial)

Computer vulnerabilities tracking service

Vigil@nce provides an applications vulnerabilities announce. Each administrator can customize the list of products for which he wants to receive vulnerability alerts.