On Thu, 30 Oct 2014 19:09:44 -0700, Eric Shubert wrote:
> Not surprised that you missed it Quinn, but there was a post here on
> 9/25 about it. ;) Pretty serious vulnerability, but easily remedied.
Ok, glad it was brought up. I didn't see a match for "shellshock" in the QMT
list archives.
Q
-
On 10/30/2014 08:35 AM, Quinn Comendant wrote:
It hasn't been mentioned on this list yet so I thought I would bring it up: qmail exposes
environment variables in a way that a vulnerable bash is susceptible to CVE-2014-6271
(aka "shellshock").
If you have a patched bash, don't worry. If you ha