[Python-Dev] Critical bash vulnerability CVE-2014-6271 may affect Python on nx and OSX

Fri Sep 26 03:30:08 CEST 2014

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 09/25/2014 08:59 PM, Cameron Simpson wrote:
> Your cable/adsl modem? Probably an embedded Linux box, possibly using
> bash, and certainly a dhcp client of the ISP. Better still, for many
> people that same comprimisable modem is the DHCP _server_ for their
> home LAN...

Generally those devices are *not* using bash as '/bin/sh':  it is too
heavyweigh.  Most will use 'busybox' or some other Swiss-army command for
stuff which is separate commands on a "normal" linux system.

Tres.
- -- 
===================================================================
Tres Seaver          +1 540-429-0999          tseaver at palladion.com
Palladion Software   "Excellence by Design"    http://palladion.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEYEARECAAYFAlQkwaAACgkQ+gerLs4ltQ4mYwCguMEUfwXZTM4FRS80HPCZx8DY
hogAoNVIjWfn1R2obPH9LhRGFkzBR4Pw
=oXxP
-----END PGP SIGNATURE-----

[Python-Dev] Critical bash vulnerability CVE-2014-6271 may affect Python on *n*x and OSX

[Python-Dev] Critical bash vulnerability CVE-2014-6271 may affect Python on nx and OSX