{"id":3453,"date":"2014-10-05T17:15:40","date_gmt":"2014-10-05T08:15:40","guid":{"rendered":"https:\/\/tksm.org\/wp\/?p=3453"},"modified":"2014-10-05T17:15:40","modified_gmt":"2014-10-05T08:15:40","slug":"linux%e3%81%aebash%e3%81%ae%e4%bb%b6shellshock","status":"publish","type":"post","link":"https:\/\/tksm.org\/wp\/archives\/3453","title":{"rendered":"Linux\u306ebash\u306e\u4ef6(ShellShock)"},"content":{"rendered":"<p>\u30d1\u30c3\u30c1\u304c\u4f55\u56de\u3082\u3067\u3066\u5927\u5909\u9762\u5012\u306a\u306e\u3067\u3059\u304c\u3001\u4e00\u5fdc\u304a\u3055\u307e\u3063\u3066\u304d\u305f\u3088\u3046\u306a\u306e\u3067\u30e1\u30e2(CentOS,RHEL\u306e\u307f\uff09<br \/>\n\u3000<br \/>\nbash\u81ea\u4f53\u306f\u30ed\u30b0\u30a4\u30f3\u3057\u3066\u306a\u3044\u3068\u3042\u307e\u308a\u4f7f\u3046\u3053\u3068\u306f\u306a\u3044\u3068\u601d\u3044\u307e\u3059\u304c\u3001PHP\u3084Perl\u306a\u3069\u306eWeb\u30b5\u30a4\u30c8\u304b\u3089\u547c\u3073\u51fa\u3057\u3055\u308c\u308b\u3068\uff08\u5927\u5909\uff09\u5371\u306a\u305d\u3046\u306a\u611f\u3058\u3067\u3059\u3002<br \/>\n\u3000<br \/>\nCentOS 5,6,7\u306f\u30e1\u30f3\u30c6\u30ca\u30f3\u30b9\u4e2d\u306a\u306e\u3067\u5bfe\u5fdc\u6e08\u307f\u30d1\u30c3\u30b1\u30fc\u30b8\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u300cyum update bash\u300d\u3067\u304a\u3057\u307e\u3044<\/p>\n<pre>\r\nbash-3.2-33.el5_11.4 (RHEL5,CentOS5)\r\nbash-4.1.2-15.el6_5.2 (RHEL6,CentOS6)\r\nbash-4.2.45-5.el7_0.4 (RHEL7,CentOS7)\r\n<\/pre>\n<p>\u3000<br \/>\n\u3000<br \/>\n\u3067\u3001CentOS4(RHEL4)\u3068\u304b\u3063\u3066\u3001\u3076\u3063\u3061\u3083\u3051\u307e\u3060\u3042\u308b\u308f\u3051\u3067\u3059\u3088(^^;<br \/>\n\u3069\u3046\u3057\u305f\u3082\u3093\u3060\u3068\u601d\u3063\u305f\u3089\u3001RHEL4\u306e\u5ef6\u9577\u30b5\u30dd\u30fc\u30c8\u4e2d\u3067\u30d1\u30c3\u30b1\u30fc\u30b8\u304c\u3067\u3066\u3066\u3001\u3069\u3046\u3082Oracle Linux\u306e\u307b\u3046\u306f\u30bd\u30fc\u30b9\u304c\u516c\u958b\u3055\u308c\u3066\u3044\u308b\u3089\u3057\u3044\u3063\u3066\u3053\u3068\u3067\u3001\u305d\u3063\u3061\u304b\u3089\u3068\u3063\u3066\u3053\u308c\u3070\u3044\u308c\u308c\u305d\u3046\u3068\u306e\u3053\u3068\u3002\uff08\u30aa\u30fc\u30d7\u30f3\u30bd\u30fc\u30b9\u30d0\u30f3\u30b6\u30a4(\u7b11)\uff09<br \/>\n\u3000<br \/>\n<a href=\"https:\/\/access.redhat.com\/articles\/1200223\">Bash Code Injection Vulnerability via Specially Crafted Environment Variables (CVE-2014-6271, CVE-2014-7169)<\/a>(redhat)<br \/>\n\u3000<br \/>\n\u3053\u306e\u6295\u7a3f\u6642\u70b9\u3067\u306f\u300cbash-3.0-27.0.3.el4.src.rpm\u300d\u304c\u6700\u65b0<\/p>\n<pre>\r\nwget  https:\/\/oss.oracle.com\/el4\/SRPMS-updates\/bash-3.0-27.0.3.el4.src.rpm\r\nrpmbuild --rebuild .\/bash-3.0-27.0.2.el4.src.rpm\r\ncp \/bin\/bash \/bin\/bash.old\r\nrpm -Uvh \/usr\/src\/redhat\/RPMS\/i386\/bash-3.0-27.0.3.i386.rpm\r\n<\/pre>\n<p>\u3000<br \/>\n\u3000<br \/>\n\u3000<br \/>\n\uff1c\u95a2\u9023\uff1e<br \/>\n<a href=\"https:\/\/tksm.org\/wp\/archives\/2118\">[CentOS] CentOS4\u306e\u30ea\u30dd\u30b8\u30c8\u30ea(vault.centos.org)<\/a>(1w1.org)<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u30d1\u30c3\u30c1\u304c\u4f55\u56de\u3082\u3067\u3066\u5927\u5909\u9762\u5012\u306a\u306e\u3067\u3059\u304c\u3001\u4e00\u5fdc\u304a\u3055\u307e\u3063\u3066\u304d\u305f\u3088\u3046\u306a\u306e\u3067\u30e1\u30e2(CentOS,RHEL\u306e\u307f\uff09 \u3000 bash\u81ea\u4f53\u306f\u30ed\u30b0\u30a4\u30f3\u3057\u3066\u306a\u3044\u3068\u3042\u307e\u308a\u4f7f\u3046\u3053\u3068\u306f\u306a\u3044\u3068\u601d\u3044\u307e\u3059\u304c\u3001PHP\u3084Perl\u306a\u3069\u306eWeb\u30b5\u30a4\u30c8\u304b\u3089\u547c\u3073\u51fa\u3057\u3055 &hellip; <a href=\"https:\/\/tksm.org\/wp\/archives\/3453\" class=\"more-link\"><span class=\"screen-reader-text\">&#8220;Linux\u306ebash\u306e\u4ef6(ShellShock)&#8221;\u306e<\/span>\u7d9a\u304d\u3092\u8aad\u3080<\/a><\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[],"class_list":["post-3453","post","type-post","status-publish","format-standard","hentry","category-linux"],"views":2059,"_links":{"self":[{"href":"https:\/\/tksm.org\/wp\/wp-json\/wp\/v2\/posts\/3453","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/tksm.org\/wp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/tksm.org\/wp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/tksm.org\/wp\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/tksm.org\/wp\/wp-json\/wp\/v2\/comments?post=3453"}],"version-history":[{"count":1,"href":"https:\/\/tksm.org\/wp\/wp-json\/wp\/v2\/posts\/3453\/revisions"}],"predecessor-version":[{"id":3454,"href":"https:\/\/tksm.org\/wp\/wp-json\/wp\/v2\/posts\/3453\/revisions\/3454"}],"wp:attachment":[{"href":"https:\/\/tksm.org\/wp\/wp-json\/wp\/v2\/media?parent=3453"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/tksm.org\/wp\/wp-json\/wp\/v2\/categories?post=3453"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/tksm.org\/wp\/wp-json\/wp\/v2\/tags?post=3453"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}