Shellshock Linux bash shell vulnerability (October, 2014)

From ECE Information Technology Services
Jump to navigationJump to search

A serious vulnerability called the “Shellshock” bug has been detected in GNU Bash, a popular command-line shell for Unix-based computers. The Shellshock Bug has the potential to allow attackers to take control of an operating system, find and alter confidential information, or use the system to launch new attacks.

For managed ECE Linux machines, the IT Support Team will update bash automatically. For non-managed ECE Linux machines, we recommend you update bash for your Linux distribution as soon as possible. If you don't know whether your Linux-based machine is managed by the IT Support Team, please visit the team in MacLeod 105, or send us an inquiry at help@ece.ubc.ca with your computer name (see label on the front or top of your computer).

More information is available at http://it.ubc.ca/bash-vulnerability-shellshock-exploit