File _patchinfo of Package patchinfo.3061
<patchinfo incident="3061"> <packager>WernerFink</packager> <issue tracker="cve" id="CVE-2014-6271"></issue> <issue tracker="cve" id="CVE-2014-7169"></issue> <issue tracker="cve" id="CVE-2014-7187"></issue> <issue tracker="bnc" id="896776">VUL-0: CVE-2014-6271: bash: unexpected code execution with environment variables</issue> <issue tracker="bnc" id="898346">VUL-0: CVE-2014-7169: bash: incremental parsing fix for function environment issue</issue> <category>security</category> <rating>moderate</rating> <summary>update for bash</summary> <description>- Replace patches bash-4.2-heredoc-eof-delim.patch and bash-4.2-parse-exportfunc.patch with the official upstream patch levels bash42-052 and bash42-053 - Replace patch bash-4.2-CVE-2014-7187.patch with upstream patch level bash42-051 - Make bash-4.2-extra-import-func.patch an optional patch due instruction - Remove and replace patches bash-4.2-CVE-2014-6271.patch bash-4.2-BSC898604.patch bash-4.2-CVE-2014-7169.patch with bash upstream patch 48, patch 49, and patch 50 - Add patch bash-4.2-extra-import-func.patch which is based on the BSD patch of Christos. As further enhancements the option import-functions is mentioned in the manual page and a shopt switch is added to enable and disable import-functions on the fly </description> </patchinfo>