Created
September 25, 2014 19:53
-
-
Save umrysh/796d525327f2b1c12abe to your computer and use it in GitHub Desktop.
Revisions
-
umrysh created this gist
Sep 25, 2014 .There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,26 @@ #!/bin/bash # # Put this in /usr/local/src/, make it executable and run it. # Script From [https://dmsimard.com/2014/09/25/the-bash-cve-2014-6271-shellshock-vulnerability/] # # dependencies apt-get update; apt-get install build-essential gettext bison # get bash 3.2 source wget http://ftp.gnu.org/gnu/bash/bash-3.2.tar.gz tar zxvf bash-3.2.tar.gz cd bash-3.2 # download and apply all patches, including the latest one that patches CVE-2014-6271 for i in $(seq -f "%03g" 1 52); do wget -nv http://ftp.gnu.org/gnu/bash/bash-3.2-patches/bash32-$i patch -p0 < bash32-$i done # compile and install to /usr/local/bin/bash ./configure && make make install # point /bin/bash to the new binary mv /bin/bash /bin/bash.old ln -s /usr/local/bin/bash /bin/bash