OracleVM 2.2 : bash (OVMSA-2014-0020)

High Nessus Plugin ID 78236


The remote OracleVM host is missing a security update.


The remote OracleVM system is missing necessary patches to address critical security updates :

- Check for fishy environment Resolves: #1141644

- Fixed a bug that caused trap handlers to be executed recursively, corrupting internal data structures.
Resolves: #964753

- Don't include backup files Resolves: #700157

- Use `mktemp' for temporary files Resolves: #700157

- Added man page references to systemwide .bash_logout Resolves: #592979

- Readline glitch, when editing line with more spaces and resizing window Resolves: #525474

- Fix the memory leak in read builtin Resolves: #618393

- Don't append slash to non-directories Resolves: #583919

- Test .dynamic section if has PROGBITS or NOBITS Resolves: #484809

- Better random number generator Resolves: #492908

- Allow to source scripts with embeded NULL chars Resolves: #503701

- vi mode redo insert fixed Resolves: #575076

- Don't show broken pipe messages for builtins Resolves:

- Don't include loadables in doc dir Resolves: #663656

- Enable system-wide .bash_logout for login shells Resolves: #592979

- Don't abort source builtin Resolves: #448508

- Correctly place cursor Resolves: #463880

- Minor man page clarification for trap builtin Resolves:


Update the affected bash package.

See Also

Plugin Details

Severity: High

ID: 78236

File Name: oraclevm_OVMSA-2014-0020.nasl

Version: $Revision: 1.6 $

Type: local

Published: 2014/10/10

Modified: 2017/02/14

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

CPE: p-cpe:/a:oracle:vm:bash, cpe:/o:oracle:vm_server:2.2

Required KB Items: Host/local_checks_enabled, Host/OracleVM/release, Host/OracleVM/rpm-list

Patch Publication Date: 2014/09/25