Diffusion FreeBSD ports repository rP369331

emulators/linux_base-c6: Use a CVE-free version of bash
rP369331
Actions

Description

emulators/linux_base-c6: Use a CVE-free version of bash

Bash 4.1.2 as shipped with this Linux base port is vulnerable to
CVE-2014-6271 and CVE-2014-7169. As EL6 policy is to backport security
patches, use a RPM that is not vulnerable to either remote code execution
vulnerability.

While here:

Add the proper UDPATES Master site
remove sample files installation from Makefile, in favor of @sample

Approved by: swills (mentor)
Security: 71ad81da-4414-11e4-a33e-3c970e169bc2

Details

Provenance

xmj	Authored on

Parents

rP369330: Add linux_base-c6-6.5 package to the bash vulnerability report.

Branches

Unknown

Tags

Unknown

Event Timeline

Changes (3)

Path

Size

head/

emulators/

linux_base-c6/

Makefile

distinfo.i686

pkg-plist

rP369331

View Options

head/emulators/linux_base-c6/Makefile

View Options

head/emulators/linux_base-c6/distinfo.i686

View Options

head/emulators/linux_base-c6/pkg-plist

emulators/linux_base-c6: Use a CVE-free version of bashrP369331Actions

Description

Details

Event Timeline

Changes (3)

rP369331

head/emulators/linux_base-c6/Makefile

head/emulators/linux_base-c6/distinfo.i686

head/emulators/linux_base-c6/pkg-plist

emulators/linux_base-c6: Use a CVE-free version of bash
rP369331
Actions