Overview

File _patchinfo of Package patchinfo.3061

<patchinfo incident="3061">
  <packager>WernerFink</packager>
  <issue tracker="cve" id="CVE-2014-6271"></issue>
  <issue tracker="cve" id="CVE-2014-7169"></issue>
  <issue tracker="cve" id="CVE-2014-7187"></issue>
  <issue tracker="bnc" id="896776">VUL-0: CVE-2014-6271: bash: unexpected code execution with environment variables</issue>
  <issue tracker="bnc" id="898346">VUL-0: CVE-2014-7169: bash: incremental parsing fix for function environment issue</issue>
  <category>security</category>
  <rating>moderate</rating>
  <summary>update for bash</summary>
  <description>- Replace patches bash-4.2-heredoc-eof-delim.patch and
  bash-4.2-parse-exportfunc.patch with the official upstream
  patch levels bash42-052 and bash42-053

- Replace patch bash-4.2-CVE-2014-7187.patch with upstream patch
  level bash42-051

- Make bash-4.2-extra-import-func.patch an optional patch due
  instruction

- Remove and replace patches
  bash-4.2-CVE-2014-6271.patch
  bash-4.2-BSC898604.patch
  bash-4.2-CVE-2014-7169.patch
  with bash upstream patch 48, patch 49, and patch 50
- Add patch bash-4.2-extra-import-func.patch which is based on the
  BSD patch of Christos.  As further enhancements the option
  import-functions is mentioned in the manual page and a shopt
  switch is added to enable and disable import-functions on the fly
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places