The Third Party Vulnerability Resolution Blog covers CVEs and patches in Systems product suite.

Multiple vulnerabilities in Bash

Ritwik Ghoshal
Senior Principal Security Analyst
CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2014-6271 OS Command Injections vulnerability 10.0 Bash
Solaris 10 SPARC: 126546-07 X86: 126547-07
Solaris 11.2
Solaris 8 SPARC: 150512-01 X86: 150513-01
Solaris 9 SPARC: 149079-03 X86: 149080-02
CVE-2014-6278 OS Command Injections vulnerability 10.0
CVE-2014-7169 OS Command Injections vulnerability 10.0
CVE-2014-7186 Buffer Errors vulnerability 10.0
CVE-2014-7187 Buffer Errors vulnerability 10.0

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.