Avaya Support Forums

Avaya Support Forums (http://support.avaya.com/forums/index.php)
-   Avaya Aura & Unified Communications (http://support.avaya.com/forums/forumdisplay.php?f=2)
-   -   CS1000: “Shell Shock” security vulnerability discovered in the Bash Shell for UNIX, (http://support.avaya.com/forums/showthread.php?t=5208)

smaiyaur 09-27-2014 12:12 AM

CS1000: “Shell Shock” security vulnerability discovered in the Bash Shell for UNIX,
 
CS1000: “Shell Shock” security vulnerability discovered in the Bash Shell for UNIX, Linux and OSX systems.

Name of Problem: CS 1000 R7.6 and R7.5 – “Shell Shock” Vulnerability Service Updates
Communications Server 1000M and Communications Server 1000E – R7.6 and R7.5

This is issued to advise of recommended Service Updates for Communication Server 1000 R7.6 and R7.5 systems in response to the “Shell Shock” security vulnerability discovered in the Bash Shell for UNIX, Linux and OSX systems.

More information on the vulnerability can be found here:
https://www.us-cert.gov/ncas/alerts/TA14-268A
https://access.redhat.com/security/cve/CVE-2014-6271
https://access.redhat.com/security/cve/CVE-2014-7169


The relevant Service Updates are as follows and can be downloaded by partners via ESPL from early next week (expected Monday 29/Sept 2014). A PSN will also be published externally on Monday.
https://espl.avaya.com/espl
ESPL
Main Menu
Section: Serviceability Updates and Loadware/Firmware Distribution Tools (CS1000)
SU/LW/FW File Search
<next page>
Product: Linux
Release: 7.65.16.00 or 7.50.17.00
Application: LinuxOS

- R7.6
o bash-3.2-33.el5_11.4.i386

- R7.5
o bash-3.2-33.el5_11.4.i386


All times are GMT -7. The time now is 02:30 AM.