This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.
This plugin has been deprecated.
This patch was withdrawn by the openSUSE team, as the software was
fixed prior to release. No replacement patches/plugins exist.
bash was updated to fix command injection via environment variables.
Also a hardening patch was applied that only imports functions over
BASH_FUNC_ prefixed environment variables.
Also fixed: CVE-2014-7186, CVE-2014-7187: bad handling of HERE
documents and for loop issue
See also :
Risk factor :
Critical / CVSS Base Score : 10.0
Public Exploit Available : true