Quite a few users have contacted me through my site to inform me that they have no updates available and they are worried about the flaw that has just been announced in BASH – CVE-2014-6271

[alert-note]Post updated to include patch for CVE-2014-7169[/alert-note]

You’re right to be worried, it’s a pretty nasty flaw. But don’t worry we will get you patched!

 

We can install the update directly from Koji.

 

To update your BASH version manually please do the following in a terminal.

[alert-note]Please su into root or use sudo[/alert-note]

Installation

yum -y install koji
koji download-build --arch=$(uname -m) bash-4.2.48-2.fc20
yum localinstall bash-4.2.48-2.fc20.$(uname -m).rpm

James Smith

Security Researcher, Penetration Tester & Linux Advocate

2 Comments

Stephen Davies · September 26, 2014 at 8:30 am

Thanks for the information. Do you know if this will work with older versions of fedora like release 7 (Moonshine)?

ragingturd · September 26, 2014 at 9:31 am

Thanks, this works for Fedora 17.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: