{"id":10850,"date":"2014-09-25T18:24:23","date_gmt":"2014-09-25T09:24:23","guid":{"rendered":"http:\/\/vitalify.jp\/blog\/?p=10850"},"modified":"2014-09-25T18:25:34","modified_gmt":"2014-09-25T09:25:34","slug":"bash%e3%81%ae%e8%84%86%e5%bc%b1%e6%80%a7cve-2014-6271-%e5%af%be%e5%bf%9c%e3%81%ab%e3%81%a4%e3%81%84%e3%81%a6","status":"publish","type":"post","link":"https:\/\/vitalify.jp\/blog\/2014\/09\/bash%e3%81%ae%e8%84%86%e5%bc%b1%e6%80%a7cve-2014-6271-%e5%af%be%e5%bf%9c%e3%81%ab%e3%81%a4%e3%81%84%e3%81%a6.html","title":{"rendered":"bash\u306e\u8106\u5f31\u6027(CVE-2014-6271) \u5bfe\u5fdc\u306b\u3064\u3044\u3066"},"content":{"rendered":"

\u3069\u3046\u3082\u3002\u4f0a\u85e4\u3067\u3059\u3002<\/p>\n

\u6700\u8fd1\u5168\u304f\u66f4\u65b0\u3067\u304d\u3066\u304a\u308a\u307e\u305b\u3093\u3067\u3057\u305f\u304c\u3001\u4e45\u3057\u3076\u308a\u306b\u66f4\u65b0\u3057\u307e\u3059\u3002
\nbash\u306b\u8106\u5f31\u6027\u304c\u78ba\u8a8d\u3055\u308c\u305f\u3068\u3044\u3046\u60c5\u5831\u304c\u5165\u3063\u3066\u304d\u305f\u306e\u3067\u30c1\u30a7\u30c3\u30af\u65b9\u6cd5\u3068\u5bfe\u7b56\u65b9\u6cd5\u3092\u5171\u6709\u3057\u307e\u3059\u3002<\/p>\n

\u25a0\u30c1\u30a7\u30c3\u30af\u65b9\u6cd5
\n\u4ee5\u4e0b\u306e\u30b3\u30de\u30f3\u30c9\u3092\u5b9f\u884c\u3057\u3066\u300cvulnerable\u300d\u304c\u8868\u793a\u3055\u308c\u305f\u5834\u5408\u3001CVE-2014-6271\u306e\u5f71\u97ff\u3092\u53d7\u3051\u308b\u53ef\u80fd\u6027\u3042\u308a\u3002
\n$ env x='() { :;}; echo vulnerable’ bash -c “echo bash”
\nvulnerable
\nbash<\/p>\n

\u25a0\u73fe\u5728\u30d0\u30fc\u30b8\u30e7\u30f3\u3092\u78ba\u8a8d
\n$ rpm -qa bash
\nbash-4.1.2-9.el6_2.x86_64<\/p>\n

<\/p>\n

\u25a0\u30d1\u30c3\u30b1\u30fc\u30b8\u3092\u66f4\u65b0
\n$ yum -y update bash
\nLoaded plugins: fastestmirror, priorities, security
\nLoading mirror speeds from cached hostfile
\n * base: ftp.iij.ad.jp
\n * extras: ftp.iij.ad.jp
\n * rpmforge: ftp.kddilabs.jp
\n * updates: ftp.tsukuba.wide.ad.jp
\n\u30fb
\n\u30fb
\n\u30fb
\n\u30fb
\nTransaction Test Succeeded
\nRunning Transaction
\n Updating : bash-4.1.2-15.el6_5.1.x86_64 1\/2
\n Cleanup : bash-4.1.2-9.el6_2.x86_64 2\/2
\n Verifying : bash-4.1.2-15.el6_5.1.x86_64 1\/2
\n Verifying : bash-4.1.2-9.el6_2.x86_64 2\/2<\/p>\n

Updated:
\n bash.x86_64 0:4.1.2-15.el6_5.1<\/p>\n

\u25a0\u518d\u30c1\u30a7\u30c3\u30af\u65b9\u6cd5
\n$ env x='() { :;}; echo vulnerable’ bash -c “echo bash”
\nbash: warning: x: ignoring function definition attempt
\nbash: error importing function definition for `x’
\nbash<\/p>\n

\u25a0\u66f4\u65b0\u5f8c\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u3092\u78ba\u8a8d
\n# rpm -qa bash
\nbash-4.1.2-15.el6_5.1.x86_64<\/p>\n

\u3053\u308c\u3067\u4e00\u5148\u305a\u5b89\u5fc3\u3067\u3059\u3002<\/p>\n

\u3067\u306f\u3067\u306f\u3002<\/p>\n

\n
<\/div><\/fb:like><\/div>\n
<\/g:plusone><\/div>\n
\"\u3053\u306e\u30a8\u30f3\u30c8\u30ea\u30fc\u3092\u306f\u3066\u306a\u30d6\u30c3\u30af\u30de\u30fc\u30af\u306b\u8ffd\u52a0\"<\/a>