Re: Issues with exported functions

bug-bash

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Issues with exported functions

From:	lolilolicon
Subject:	Re: Issues with exported functions
Date:	Thu, 25 Sep 2014 03:54:19 +0800

I think almost as severe as CVE-2014-6271 is that it's still possible to
mask commands in a bash script by changing it's environment.

For example, true='() { false;}' or grep='() { /bin/id;}' ...

[Prev in Thread]

Current Thread

[Next in Thread]

Re: Issues with exported functions, (continued)
- Re: Issues with exported functions, lolilolicon <=
  - Re: Issues with exported functions, Greg Wooledge, 2014/09/24
    - Re: Issues with exported functions, Chet Ramey, 2014/09/24
  - Re: Issues with exported functions, Vincent Lefevre, 2014/09/26
    - Re: Issues with exported functions, lolilolicon, 2014/09/26
  - Re: Issues with exported functions, Vincent Lefevre, 2014/09/26
- Re: Issues with exported functions, Chet Ramey, 2014/09/24
  - Re: Issues with exported functions, lolilolicon, 2014/09/25
    - Re: Issues with exported functions, Pierre Gaston, 2014/09/25
  - Re: Issues with exported functions, Davide Brini, 2014/09/25
    - Re: Issues with exported functions, Geir Hauge, 2014/09/25

Prev by Date: Re: Issues with exported functions
Next by Date: Re: Issues with exported functions
Previous by thread: Re: Issues with exported functions
Next by thread: Re: Issues with exported functions
Index(es):
- Date
- Thread