I think almost as severe as CVE-2014-6271 is that it's still possible to mask commands in a bash script by changing it's environment.
For example, true='() { false;}' or grep='() { /bin/id;}' ...
- Re: Issues with ex... Dan Douglas
- Re: Issues with export... Eric Blake
- Re: Issues with ex... Gabriel Corona
- Re: Issues with ex... Gabriel Corona
- Re: Issues with exported functi... Ángel González
- Re: Issues with exported fu... lolilolicon
- Re: Issues with export... Steve Simmons
- Re: Issues with export... Chet Ramey
- Re: Issues with ex... Eduardo A . Bustamante López
- Re: Issues with ex... Ángel González
- Re: Issues with exported functions lolilolicon
- Re: Issues with exported functions Greg Wooledge
- Re: Issues with exported functions Chet Ramey
- Re: Issues with exported functions Vincent Lefevre
- Re: Issues with exported functions lolilolicon
- Re: Issues with exported functions Vincent Lefevre
- Re: Issues with exported functions Chet Ramey
- Re: Issues with exported functions lolilolicon
- Re: Issues with exported functions Pierre Gaston
- Re: Issues with exported functions Davide Brini
- Re: Issues with exported functions Geir Hauge
