VYPR

rpm package

suse/bash&distro=SUSE Linux Enterprise Server 12 SP1-LTSS

pkg:rpm/suse/bash&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS

Vulnerabilities (2)

  • CVE-2012-6711Jun 18, 2019
    affected < 4.2-83.6.1fixed 4.2-83.6.1

    A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LC_CTYPE environment variable, are printed through the echo built-in function. A local attacker, who can provide data to print through the "echo -e" bui

  • CVE-2019-9924Mar 22, 2019
    affected < 4.2-83.3.1fixed 4.2-83.3.1

    rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASH_CMDS, thus allowing the user to execute any command with the permissions of the shell.