Tavis Ormandy discovered that the security fix for Bash included in USN-2362-1 was incomplete. An attacker could use this issue to bypass certain environment restrictions. (CVE-2014-7169)
{ "availability": "No subscription required", "binaries": [ { "bash-builtins": "4.3-7ubuntu1.2", "bash": "4.3-7ubuntu1.2", "bash-doc": "4.3-7ubuntu1.2", "bash-static": "4.3-7ubuntu1.2" } ] }