{"id":13,"date":"2014-09-24T23:24:34","date_gmt":"2014-09-25T07:24:34","guid":{"rendered":"http:\/\/blog.tailslide.org\/?p=13"},"modified":"2014-09-24T23:34:09","modified_gmt":"2014-09-25T07:34:09","slug":"updating-bash-on-os-x-to-avoid-that-remote-execution-exploit-everyones-tweeting-about","status":"publish","type":"post","link":"http:\/\/blog.tailslide.org\/?p=13","title":{"rendered":"Updating Bash on OS X to avoid that remote execution exploit everyone’s tweeting about"},"content":{"rendered":"

After seeing a lot of tweets about the Bash vulnerability<\/a> I was tempted to follow the “write a blog post about it in order to learn about it” plan of action, but as I started reading up on the details of how OS X ships with the vulnerable 3.2 version of Bash I came across StackExchange user AlBlue<\/a>‘s very in-depth answer<\/a> that covered everything. So go read that answer and compile a new version of Bash and you’re all set.<\/p>\n

One thing I will mention again from that answer is that upgrading only<\/strong> your Homebrew’s version of Bash is not<\/strong> enough since the vulnerable \/bin\/bash executable is still around and most scripts are pointing directly at that version #!\/bin\/bash<\/code> not to mention every installed program that references a shell.<\/p>\n","protected":false},"excerpt":{"rendered":"

After seeing a lot of tweets about the Bash vulnerability I was tempted to follow the “write a blog post about it in order to learn about it” plan of action, but as I started reading up on the details … Continue reading →<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[1],"tags":[],"class_list":["post-13","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/p16AwM-d","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"http:\/\/blog.tailslide.org\/index.php?rest_route=\/wp\/v2\/posts\/13","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/blog.tailslide.org\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/blog.tailslide.org\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/blog.tailslide.org\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/blog.tailslide.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=13"}],"version-history":[{"count":0,"href":"http:\/\/blog.tailslide.org\/index.php?rest_route=\/wp\/v2\/posts\/13\/revisions"}],"wp:attachment":[{"href":"http:\/\/blog.tailslide.org\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=13"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/blog.tailslide.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=13"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/blog.tailslide.org\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=13"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}