CVE-2014-6271: GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability

First published: Mon Sep 15 2014(Updated: )

GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute code.

Credit: security@debian.org security@debian.org

Affected Software	Affected Version	How to fix
GNU Bash	=1.14.0
GNU Bash	=1.14.1
GNU Bash	=1.14.2
GNU Bash	=1.14.3
GNU Bash	=1.14.4
GNU Bash	=1.14.5
GNU Bash	=1.14.6
GNU Bash	=1.14.7
GNU Bash	=2.0
GNU Bash	=2.01
GNU Bash	=2.01.1
GNU Bash	=2.02
GNU Bash	=2.02.1
GNU Bash	=2.03
GNU Bash	=2.04
GNU Bash	=2.05
GNU Bash	=2.05-a
GNU Bash	=2.05-b
GNU Bash	=3.0
GNU Bash	=3.0.16
GNU Bash	=3.1
GNU Bash	=3.2
GNU Bash	=3.2.48
GNU Bash	=4.0
GNU Bash	=4.0-rc1
GNU Bash	=4.1
GNU Bash	=4.2
GNU Bash	=4.3
GNU Bourne-Again Shell (Bash)
GNU Bash	<=4.3
Arista EOS	>=4.9.0<4.9.12
Arista EOS	>=4.10.0<4.10.9
Arista EOS	>=4.11.0<4.11.11
Arista EOS	>=4.12.0<4.12.9
Arista EOS	>=4.13.0<4.13.9
Arista EOS	>=4.14.0<4.14.4f
Oracle Linux	=4
Oracle Linux	=5
Oracle Linux	=6
QNAP QTS	<4.1.1
QNAP QTS	=4.1.1
QNAP QTS	=4.1.1-build_0927
Mageia Mageia	=3.0
Mageia Mageia	=4.0
Redhat Gluster Storage Server For On-premise	=2.1
Redhat Virtualization	=3.4
Redhat Enterprise Linux	=4.0
Redhat Enterprise Linux	=5.0
Redhat Enterprise Linux	=6.0
Redhat Enterprise Linux	=7.0
Redhat Enterprise Linux Desktop	=5.0
Redhat Enterprise Linux Desktop	=6.0
Redhat Enterprise Linux Desktop	=7.0
Redhat Enterprise Linux Eus	=5.9
Redhat Enterprise Linux Eus	=6.4
Redhat Enterprise Linux Eus	=6.5
Redhat Enterprise Linux Eus	=7.3
Redhat Enterprise Linux Eus	=7.4
Redhat Enterprise Linux Eus	=7.5
Redhat Enterprise Linux Eus	=7.6
Redhat Enterprise Linux Eus	=7.7
Redhat Enterprise Linux For Ibm Z Systems	=5.9_s390x
Redhat Enterprise Linux For Ibm Z Systems	=6.4_s390x
Redhat Enterprise Linux For Ibm Z Systems	=6.5_s390x
Redhat Enterprise Linux For Ibm Z Systems	=7.3_s390x
Redhat Enterprise Linux For Ibm Z Systems	=7.4_s390x
Redhat Enterprise Linux For Ibm Z Systems	=7.5_s390x
Redhat Enterprise Linux For Ibm Z Systems	=7.6_s390x
Redhat Enterprise Linux For Ibm Z Systems	=7.7_s390x
Redhat Enterprise Linux For Power Big Endian	=5.0_ppc
Redhat Enterprise Linux For Power Big Endian	=5.9_ppc
Redhat Enterprise Linux For Power Big Endian	=6.0_ppc64
Redhat Enterprise Linux For Power Big Endian	=6.4_ppc64
Redhat Enterprise Linux For Power Big Endian	=7.0_ppc64
Redhat Enterprise Linux For Power Big Endian Eus	=6.5_ppc64
Redhat Enterprise Linux For Power Big Endian Eus	=7.3_ppc64
Redhat Enterprise Linux For Power Big Endian Eus	=7.4_ppc64
Redhat Enterprise Linux For Power Big Endian Eus	=7.5_ppc64
Redhat Enterprise Linux For Power Big Endian Eus	=7.6_ppc64
Redhat Enterprise Linux For Power Big Endian Eus	=7.7_ppc64
Redhat Enterprise Linux For Scientific Computing	=6.0
Redhat Enterprise Linux For Scientific Computing	=7.0
Redhat Enterprise Linux Server	=5.0
Redhat Enterprise Linux Server	=6.0
Redhat Enterprise Linux Server	=7.0
Redhat Enterprise Linux Server Aus	=5.6
Redhat Enterprise Linux Server Aus	=5.9
Redhat Enterprise Linux Server Aus	=6.2
Redhat Enterprise Linux Server Aus	=6.4
Redhat Enterprise Linux Server Aus	=6.5
Redhat Enterprise Linux Server Aus	=7.3
Redhat Enterprise Linux Server Aus	=7.4
Redhat Enterprise Linux Server Aus	=7.6
Redhat Enterprise Linux Server Aus	=7.7
Redhat Enterprise Linux Server From Rhui	=5.0
Redhat Enterprise Linux Server From Rhui	=6.0
Redhat Enterprise Linux Server From Rhui	=7.0
Redhat Enterprise Linux Server Tus	=6.5
Redhat Enterprise Linux Server Tus	=7.3
Redhat Enterprise Linux Server Tus	=7.6
Redhat Enterprise Linux Server Tus	=7.7
Redhat Enterprise Linux Workstation	=5.0
Redhat Enterprise Linux Workstation	=6.0
Redhat Enterprise Linux Workstation	=7.0
SUSE Studio Onsite	=1.3
openSUSE openSUSE	=12.3
openSUSE openSUSE	=13.1
openSUSE openSUSE	=13.2
SUSE Linux Enterprise Desktop	=11-sp3
SUSE Linux Enterprise Desktop	=12
SUSE Linux Enterprise Server	=10-sp3
SUSE Linux Enterprise Server	=10-sp4
SUSE Linux Enterprise Server	=11-sp1
SUSE Linux Enterprise Server	=11-sp2
SUSE Linux Enterprise Server	=11-sp3
Suse Linux Enterprise Server	=11-sp3
SUSE Linux Enterprise Server	=12
SUSE Linux Enterprise Software Development Kit	=11-sp3
SUSE Linux Enterprise Software Development Kit	=12
Debian Debian Linux	=7.0
Ibm Infosphere Guardium Database Activity Monitoring	=8.2
Ibm Infosphere Guardium Database Activity Monitoring	=9.0
Ibm Infosphere Guardium Database Activity Monitoring	=9.1
IBM PureApplication System	>=1.0.0.0<=1.0.0.4
IBM PureApplication System	>=1.1.0.0<=1.1.0.4
IBM PureApplication System	=2.0.0.0
Ibm Qradar Risk Manager	=7.1.0
IBM QRadar Security Information and Event Manager	=7.1.0
IBM QRadar Security Information and Event Manager	=7.1.0-mr1
IBM QRadar Security Information and Event Manager	=7.1.0-mr2
IBM QRadar Security Information and Event Manager	=7.1.1
IBM QRadar Security Information and Event Manager	=7.1.1-p1
IBM QRadar Security Information and Event Manager	=7.1.1-p2
IBM QRadar Security Information and Event Manager	=7.1.1-p3
IBM QRadar Security Information and Event Manager	=7.1.2
IBM QRadar Security Information and Event Manager	=7.1.2-p1
IBM QRadar Security Information and Event Manager	=7.1.2-p10
IBM QRadar Security Information and Event Manager	=7.1.2-p11
IBM QRadar Security Information and Event Manager	=7.1.2-p12
IBM QRadar Security Information and Event Manager	=7.1.2-p13
IBM QRadar Security Information and Event Manager	=7.1.2-p2
IBM QRadar Security Information and Event Manager	=7.1.2-p3
IBM QRadar Security Information and Event Manager	=7.1.2-p4
IBM QRadar Security Information and Event Manager	=7.1.2-p5
IBM QRadar Security Information and Event Manager	=7.1.2-p6
IBM QRadar Security Information and Event Manager	=7.1.2-p7
IBM QRadar Security Information and Event Manager	=7.1.2-p8
IBM QRadar Security Information and Event Manager	=7.1.2-p9
IBM QRadar Security Information and Event Manager	=7.2
IBM QRadar Security Information and Event Manager	=7.2.0
IBM QRadar Security Information and Event Manager	=7.2.0-p1
IBM QRadar Security Information and Event Manager	=7.2.0-p2
IBM QRadar Security Information and Event Manager	=7.2.0-p3
IBM QRadar Security Information and Event Manager	=7.2.1
IBM QRadar Security Information and Event Manager	=7.2.1-p1
IBM QRadar Security Information and Event Manager	=7.2.1-p2
IBM QRadar Security Information and Event Manager	=7.2.1-p3
IBM QRadar Security Information and Event Manager	=7.2.2
IBM QRadar Security Information and Event Manager	=7.2.2-p1
IBM QRadar Security Information and Event Manager	=7.2.2-p2
IBM QRadar Security Information and Event Manager	=7.2.2-p3
IBM QRadar Security Information and Event Manager	=7.2.2-p4
IBM QRadar Security Information and Event Manager	=7.2.3
IBM QRadar Security Information and Event Manager	=7.2.3-p1
IBM QRadar Security Information and Event Manager	=7.2.3-p2
IBM QRadar Security Information and Event Manager	=7.2.3-p3
IBM QRadar Security Information and Event Manager	=7.2.3-p4
IBM QRadar Security Information and Event Manager	=7.2.4
IBM QRadar Security Information and Event Manager	=7.2.4-p1
IBM QRadar Security Information and Event Manager	=7.2.4-p2
IBM QRadar Security Information and Event Manager	=7.2.4-p3
IBM QRadar Security Information and Event Manager	=7.2.4-p4
IBM QRadar Security Information and Event Manager	=7.2.4-p5
IBM QRadar Security Information and Event Manager	=7.2.4-p6
IBM QRadar Security Information and Event Manager	=7.2.5
IBM QRadar Security Information and Event Manager	=7.2.5-p1
IBM QRadar Security Information and Event Manager	=7.2.5-p2
IBM QRadar Security Information and Event Manager	=7.2.5-p3
IBM QRadar Security Information and Event Manager	=7.2.5-p4
IBM QRadar Security Information and Event Manager	=7.2.5-p5
IBM QRadar Security Information and Event Manager	=7.2.5-p6
IBM QRadar Security Information and Event Manager	=7.2.6
IBM QRadar Security Information and Event Manager	=7.2.6-p1
IBM QRadar Security Information and Event Manager	=7.2.6-p2
IBM QRadar Security Information and Event Manager	=7.2.6-p3
IBM QRadar Security Information and Event Manager	=7.2.6-p4
IBM QRadar Security Information and Event Manager	=7.2.6-p5
IBM QRadar Security Information and Event Manager	=7.2.6-p6
IBM QRadar Security Information and Event Manager	=7.2.6-p7
IBM QRadar Security Information and Event Manager	=7.2.7
IBM QRadar Security Information and Event Manager	=7.2.7-p1
IBM QRadar Security Information and Event Manager	=7.2.7-p2
IBM QRadar Security Information and Event Manager	=7.2.7-p3
IBM QRadar Security Information and Event Manager	=7.2.7-p4
IBM QRadar Security Information and Event Manager	=7.2.8
IBM QRadar Security Information and Event Manager	=7.2.8-p1
IBM QRadar Security Information and Event Manager	=7.2.8-p10
IBM QRadar Security Information and Event Manager	=7.2.8-p11
IBM QRadar Security Information and Event Manager	=7.2.8-p12
IBM QRadar Security Information and Event Manager	=7.2.8-p13
IBM QRadar Security Information and Event Manager	=7.2.8-p14
IBM QRadar Security Information and Event Manager	=7.2.8-p15
IBM QRadar Security Information and Event Manager	=7.2.8-p16
IBM QRadar Security Information and Event Manager	=7.2.8-p2
IBM QRadar Security Information and Event Manager	=7.2.8-p3
IBM QRadar Security Information and Event Manager	=7.2.8-p4
IBM QRadar Security Information and Event Manager	=7.2.8-p5
IBM QRadar Security Information and Event Manager	=7.2.8-p6
IBM QRadar Security Information and Event Manager	=7.2.8-p7
IBM QRadar Security Information and Event Manager	=7.2.8-p8
IBM QRadar Security Information and Event Manager	=7.2.8-p9
IBM QRadar Security Information and Event Manager	=7.2.8.15
IBM QRadar Security Information and Event Manager	=7.2.9
Ibm Qradar Vulnerability Manager	=7.2.0
Ibm Qradar Vulnerability Manager	=7.2.1
Ibm Qradar Vulnerability Manager	=7.2.2
Ibm Qradar Vulnerability Manager	=7.2.3
Ibm Qradar Vulnerability Manager	=7.2.4
Ibm Qradar Vulnerability Manager	=7.2.6-p1
Ibm Qradar Vulnerability Manager	=7.2.6-p2
Ibm Qradar Vulnerability Manager	=7.2.6-p3
Ibm Qradar Vulnerability Manager	=7.2.6-p4
Ibm Qradar Vulnerability Manager	=7.2.6-p5
Ibm Qradar Vulnerability Manager	=7.2.6-p6
Ibm Qradar Vulnerability Manager	=7.2.6-p7
Ibm Qradar Vulnerability Manager	=7.2.8
Ibm Qradar Vulnerability Manager	=7.2.8-p1
Ibm Qradar Vulnerability Manager	=7.2.8-p10
Ibm Qradar Vulnerability Manager	=7.2.8-p11
Ibm Qradar Vulnerability Manager	=7.2.8-p12
Ibm Qradar Vulnerability Manager	=7.2.8-p13
Ibm Qradar Vulnerability Manager	=7.2.8-p14
Ibm Qradar Vulnerability Manager	=7.2.8-p15
Ibm Qradar Vulnerability Manager	=7.2.8-p16
Ibm Qradar Vulnerability Manager	=7.2.8-p17
Ibm Qradar Vulnerability Manager	=7.2.8-p2
Ibm Qradar Vulnerability Manager	=7.2.8-p3
Ibm Qradar Vulnerability Manager	=7.2.8-p4
Ibm Qradar Vulnerability Manager	=7.2.8-p5
Ibm Qradar Vulnerability Manager	=7.2.8-p6
Ibm Qradar Vulnerability Manager	=7.2.8-p7
Ibm Qradar Vulnerability Manager	=7.2.8-p8
Ibm Qradar Vulnerability Manager	=7.2.8-p9
Ibm Smartcloud Entry Appliance	=2.3.0
Ibm Smartcloud Entry Appliance	=2.4.0
Ibm Smartcloud Entry Appliance	=3.1.0
Ibm Smartcloud Entry Appliance	=3.2.0
IBM SmartCloud Provisioning	=2.1.0
Ibm Software Defined Network For Virtual Environments	<1.2.1
Ibm Software Defined Network For Virtual Environments	<1.2.1
Ibm Software Defined Network For Virtual Environments	<1.2.1
Ibm Starter Kit For Cloud	=2.2.0
IBM Workload Deployer	>=3.1.0<=3.1.0.7
Ibm Security Access Manager For Mobile 8.0 Firmware	=8.0.0.1
Ibm Security Access Manager For Mobile 8.0 Firmware	=8.0.0.2
Ibm Security Access Manager For Mobile 8.0 Firmware	=8.0.0.3
Ibm Security Access Manager For Mobile 8.0 Firmware	=8.0.0.5
Ibm Security Access Manager For Web 7.0 Firmware	=7.0.0.1
Ibm Security Access Manager For Web 7.0 Firmware	=7.0.0.2
Ibm Security Access Manager For Web 7.0 Firmware	=7.0.0.3
Ibm Security Access Manager For Web 7.0 Firmware	=7.0.0.4
Ibm Security Access Manager For Web 7.0 Firmware	=7.0.0.5
Ibm Security Access Manager For Web 7.0 Firmware	=7.0.0.6
Ibm Security Access Manager For Web 7.0 Firmware	=7.0.0.7
Ibm Security Access Manager For Web 7.0 Firmware	=7.0.0.8
Ibm Security Access Manager For Web 8.0 Firmware	=8.0.0.2
Ibm Security Access Manager For Web 8.0 Firmware	=8.0.0.3
Ibm Security Access Manager For Web 8.0 Firmware	=8.0.0.5
All of
Any of
Ibm Storwize V7000 Firmware	>=1.1.0.0<1.4.3.5
Ibm Storwize V7000 Firmware	>=1.5.0.0<1.5.0.4
Ibm Storwize V7000 Firmware	>=7.2.0.0<7.2.0.9
Ibm Storwize V7000 Firmware	>=7.3.0.0<7.3.0.7
IBM Storwize V7000
All of
Any of
Ibm Storwize V5000 Firmware	>=1.1.0.0<7.1.0.11
Ibm Storwize V5000 Firmware	>=7.2.0.0<7.2.0.9
Ibm Storwize V5000 Firmware	>=7.3.0.0<7.3.0.7
Ibm Storwize V5000
All of
Any of
Ibm Storwize V3700 Firmware	>=1.1.0.0<7.1.0.11
Ibm Storwize V3700 Firmware	>=7.2.0.0<7.2.0.9
Ibm Storwize V3700 Firmware	>=7.3.0.0<7.3.0.7
Ibm Storwize V3700
All of
Any of
Ibm Storwize V3500 Firmware	>=1.1.0.0<7.1.0.11
Ibm Storwize V3500 Firmware	>=7.2.0.0<7.2.0.9
Ibm Storwize V3500 Firmware	>=7.3.0.0<7.3.0.7
Ibm Storwize V3500
All of
Any of
Ibm Flex System V7000 Firmware	>=1.1.0.0<7.1.0.11
Ibm Flex System V7000 Firmware	>=7.2.0.0<7.2.0.9
Ibm Flex System V7000 Firmware	>=7.3.0.0<7.3.0.7
Ibm Flex System V7000
All of
Any of
Ibm San Volume Controller Firmware	>=1.1.0.0<7.1.0.11
Ibm San Volume Controller Firmware	>=7.2.0.0<7.2.0.9
Ibm San Volume Controller Firmware	>=7.3.0.0<7.3.0.7
IBM SAN Volume Controller
All of
Any of
Ibm Stn6500 Firmware	>=3.8.0.0<3.8.0.07
Ibm Stn6500 Firmware	>=3.9.1.0<3.9.1.08
Ibm Stn6500 Firmware	>=4.1.2.0<4.1.2.06
Ibm Stn6500
All of
Any of
Ibm Stn6800 Firmware	>=3.8.0.0<3.8.0.07
Ibm Stn6800 Firmware	>=3.9.1.0<3.9.1.08
Ibm Stn6800 Firmware	>=4.1.2.0<4.1.2.06
Ibm Stn6800
All of
Any of
Ibm Stn7800 Firmware	>=3.8.0.0<3.8.0.07
Ibm Stn7800 Firmware	>=3.9.1.0<3.9.1.08
Ibm Stn7800 Firmware	>=4.1.2.0<4.1.2.06
Ibm Stn7800
Canonical Ubuntu Linux	=10.04
Canonical Ubuntu Linux	=12.04
Canonical Ubuntu Linux	=14.04
Novell ZENworks Configuration Management	=10.3
Novell ZENworks Configuration Management	=11
Novell ZENworks Configuration Management	=11.1
Novell ZENworks Configuration Management	=11.2
Novell ZENworks Configuration Management	=11.3.0
Novell Open Enterprise Server	=2.0-sp3
Novell Open Enterprise Server	=11.0-sp2
Checkpoint Security Gateway	<r77.30
F5 BIG-IP Access Policy Manager	>=10.1.0<=10.2.4
F5 BIG-IP Access Policy Manager	>=11.0.0<=11.5.1
F5 BIG-IP Access Policy Manager	=11.6.0
F5 BIG-IP Advanced Firewall Manager	>=11.3.0<=11.5.1
F5 BIG-IP Advanced Firewall Manager	=11.6.0
F5 BIG-IP Analytics	>=11.0.0<=11.5.1
F5 BIG-IP Analytics	=11.6.0
F5 Big-ip Application Acceleration Manager	>=11.4.0<=11.5.1
F5 Big-ip Application Acceleration Manager	=11.6.0
F5 BIG-IP Application Security Manager	>=10.0.0<=10.2.4
F5 BIG-IP Application Security Manager	>=11.0.0<=11.5.1
F5 BIG-IP Application Security Manager	=11.6.0
F5 Big-ip Edge Gateway	>=10.1.0<=10.2.4
F5 Big-ip Edge Gateway	>=11.0.0<=11.3.0
F5 Big-ip Global Traffic Manager	>=10.0.0<=10.2.4
F5 Big-ip Global Traffic Manager	>=11.0.0<=11.5.1
F5 Big-ip Global Traffic Manager	=11.6.0
F5 Big-ip Link Controller	>=10.0.0<=10.2.4
F5 Big-ip Link Controller	>=11.0.0<=11.5.1
F5 Big-ip Link Controller	=11.6.0
F5 Big-ip Local Traffic Manager	>=10.0.0<=10.2.4
F5 Big-ip Local Traffic Manager	>=11.0.0<=11.5.1
F5 Big-ip Local Traffic Manager	=11.6.0
F5 Big-ip Policy Enforcement Manager	>=11.3.0<=11.5.1
F5 Big-ip Policy Enforcement Manager	=11.6.0
F5 Big-ip Protocol Security Module	>=10.0.0<=10.2.4
F5 Big-ip Protocol Security Module	>=11.0.0<=11.4.1
F5 Big-ip Wan Optimization Manager	>=10.0.0<=10.2.4
F5 Big-ip Wan Optimization Manager	>=11.0.0<=11.3.0
F5 Big-ip Webaccelerator	>=10.0.0<=10.2.4
F5 Big-ip Webaccelerator	>=11.0.0<=11.3.0
F5 BIG-IQ Cloud	>=4.0.0<=4.4.0
F5 Big-iq Device	>=4.2.0<=4.4.0
F5 Big-iq Security	>=4.0.0<=4.4.0
F5 Enterprise Manager	>=2.1.0<=2.3.0
F5 Enterprise Manager	>=3.0.0<=3.1.1
F5 Traffix Signaling Delivery Controller	>=4.0.0<=4.0.5
F5 Traffix Signaling Delivery Controller	=3.3.2
F5 Traffix Signaling Delivery Controller	=3.4.1
F5 Traffix Signaling Delivery Controller	=3.5.1
F5 Traffix Signaling Delivery Controller	=4.1.0
All of
F5 Arx Firmware	>=6.0.0<=6.4.0
F5 Arx
All of
Any of
Citrix Netscaler Sdx Firmware	<9.3.67.5r1
Citrix Netscaler Sdx Firmware	>=10<10.1.129.11r1
Citrix Netscaler Sdx Firmware	>=10.5<10.5.52.11r1
Citrix Netscaler Sdx
Apple Mac OS X	>=10.0.0<10.10.0
VMware vCenter Server Appliance	=5.0
VMware vCenter Server Appliance	=5.0-update_1
VMware vCenter Server Appliance	=5.0-update_2
VMware vCenter Server Appliance	=5.1
VMware vCenter Server Appliance	=5.1-update_1
VMware vCenter Server Appliance	=5.1-update_2
VMware vCenter Server Appliance	=5.5
VMware vCenter Server Appliance	=5.5-update_1
VMware ESX	=4.0
VMware ESX	=4.1

Remedy

https://bugzilla.redhat.com/show_bug.cgi?id=1141597

Never miss a vulnerability like this again

Reference Links

collector/nvd-index
agent/type
agent/first-publish-date
agent/severity
agent/title
agent/weakness
agent/remedy
agent/description
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2014-6271
agent/author
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
exploited/true
collector/cisa-known-exploited
source/CISA
agent/references
agent/tags
collector/nvd-cve
vendor/gnu
canonical/gnu bash
version/gnu bash/1.14.0
version/gnu bash/1.14.1
version/gnu bash/1.14.2
version/gnu bash/1.14.3
version/gnu bash/1.14.4
version/gnu bash/1.14.5
version/gnu bash/1.14.6
version/gnu bash/1.14.7
version/gnu bash/2.0
version/gnu bash/2.01
version/gnu bash/2.01.1
version/gnu bash/2.02
version/gnu bash/2.02.1
version/gnu bash/2.03
version/gnu bash/2.04
version/gnu bash/2.05
version/gnu bash/2.05-a
version/gnu bash/2.05-b
version/gnu bash/3.0
version/gnu bash/3.0.16
version/gnu bash/3.1
version/gnu bash/3.2
version/gnu bash/3.2.48
version/gnu bash/4.0
version/gnu bash/4.0-rc1
version/gnu bash/4.1
version/gnu bash/4.2
version/gnu bash/4.3
vendor/arista
canonical/arista eos
version/arista eos/4.9.0
version/arista eos/4.10.0
version/arista eos/4.11.0
version/arista eos/4.12.0
version/arista eos/4.13.0
version/arista eos/4.14.0
vendor/oracle
canonical/oracle linux
version/oracle linux/4
version/oracle linux/5
version/oracle linux/6
vendor/qnap
canonical/qnap qts
version/qnap qts/4.1.1
version/qnap qts/4.1.1-build_0927
vendor/mageia
canonical/mageia mageia
version/mageia mageia/3.0
version/mageia mageia/4.0
vendor/redhat
canonical/redhat gluster storage server for on-premise
version/redhat gluster storage server for on-premise/2.1
canonical/redhat virtualization
version/redhat virtualization/3.4
canonical/redhat enterprise linux
version/redhat enterprise linux/4.0
version/redhat enterprise linux/5.0
version/redhat enterprise linux/6.0
version/redhat enterprise linux/7.0
canonical/redhat enterprise linux desktop
version/redhat enterprise linux desktop/5.0
version/redhat enterprise linux desktop/6.0
version/redhat enterprise linux desktop/7.0
canonical/redhat enterprise linux eus
version/redhat enterprise linux eus/5.9
version/redhat enterprise linux eus/6.4
version/redhat enterprise linux eus/6.5
version/redhat enterprise linux eus/7.3
version/redhat enterprise linux eus/7.4
version/redhat enterprise linux eus/7.5
version/redhat enterprise linux eus/7.6
version/redhat enterprise linux eus/7.7
canonical/redhat enterprise linux for ibm z systems
version/redhat enterprise linux for ibm z systems/5.9_s390x
version/redhat enterprise linux for ibm z systems/6.4_s390x
version/redhat enterprise linux for ibm z systems/6.5_s390x
version/redhat enterprise linux for ibm z systems/7.3_s390x
version/redhat enterprise linux for ibm z systems/7.4_s390x
version/redhat enterprise linux for ibm z systems/7.5_s390x
version/redhat enterprise linux for ibm z systems/7.6_s390x
version/redhat enterprise linux for ibm z systems/7.7_s390x
canonical/redhat enterprise linux for power big endian
version/redhat enterprise linux for power big endian/5.0_ppc
version/redhat enterprise linux for power big endian/5.9_ppc
version/redhat enterprise linux for power big endian/6.0_ppc64
version/redhat enterprise linux for power big endian/6.4_ppc64
version/redhat enterprise linux for power big endian/7.0_ppc64
canonical/redhat enterprise linux for power big endian eus
version/redhat enterprise linux for power big endian eus/6.5_ppc64
version/redhat enterprise linux for power big endian eus/7.3_ppc64
version/redhat enterprise linux for power big endian eus/7.4_ppc64
version/redhat enterprise linux for power big endian eus/7.5_ppc64
version/redhat enterprise linux for power big endian eus/7.6_ppc64
version/redhat enterprise linux for power big endian eus/7.7_ppc64
canonical/redhat enterprise linux for scientific computing
version/redhat enterprise linux for scientific computing/6.0
version/redhat enterprise linux for scientific computing/7.0
canonical/redhat enterprise linux server
version/redhat enterprise linux server/5.0
version/redhat enterprise linux server/6.0
version/redhat enterprise linux server/7.0
canonical/redhat enterprise linux server aus
version/redhat enterprise linux server aus/5.6
version/redhat enterprise linux server aus/5.9
version/redhat enterprise linux server aus/6.2
version/redhat enterprise linux server aus/6.4
version/redhat enterprise linux server aus/6.5
version/redhat enterprise linux server aus/7.3
version/redhat enterprise linux server aus/7.4
version/redhat enterprise linux server aus/7.6
version/redhat enterprise linux server aus/7.7
canonical/redhat enterprise linux server from rhui
version/redhat enterprise linux server from rhui/5.0
version/redhat enterprise linux server from rhui/6.0
version/redhat enterprise linux server from rhui/7.0
canonical/redhat enterprise linux server tus
version/redhat enterprise linux server tus/6.5
version/redhat enterprise linux server tus/7.3
version/redhat enterprise linux server tus/7.6
version/redhat enterprise linux server tus/7.7
canonical/redhat enterprise linux workstation
version/redhat enterprise linux workstation/5.0
version/redhat enterprise linux workstation/6.0
version/redhat enterprise linux workstation/7.0
vendor/suse
canonical/suse studio onsite
version/suse studio onsite/1.3
vendor/opensuse
canonical/opensuse opensuse
version/opensuse opensuse/12.3
version/opensuse opensuse/13.1
version/opensuse opensuse/13.2
canonical/suse linux enterprise desktop
version/suse linux enterprise desktop/11-sp3
version/suse linux enterprise desktop/12
canonical/suse linux enterprise server
version/suse linux enterprise server/10-sp3
version/suse linux enterprise server/10-sp4
version/suse linux enterprise server/11-sp1
version/suse linux enterprise server/11-sp2
version/suse linux enterprise server/11-sp3
version/suse linux enterprise server/12
canonical/suse linux enterprise software development kit
version/suse linux enterprise software development kit/11-sp3
version/suse linux enterprise software development kit/12
vendor/debian
canonical/debian debian linux
version/debian debian linux/7.0
vendor/ibm
canonical/ibm infosphere guardium database activity monitoring
version/ibm infosphere guardium database activity monitoring/8.2
version/ibm infosphere guardium database activity monitoring/9.0
version/ibm infosphere guardium database activity monitoring/9.1
canonical/ibm pureapplication system
version/ibm pureapplication system/1.0.0.0
version/ibm pureapplication system/1.0.0.4
version/ibm pureapplication system/1.1.0.0
version/ibm pureapplication system/1.1.0.4
version/ibm pureapplication system/2.0.0.0
canonical/ibm qradar risk manager
version/ibm qradar risk manager/7.1.0
canonical/ibm qradar security information and event manager
version/ibm qradar security information and event manager/7.1.0
version/ibm qradar security information and event manager/7.1.0-mr1
version/ibm qradar security information and event manager/7.1.0-mr2
version/ibm qradar security information and event manager/7.1.1
version/ibm qradar security information and event manager/7.1.1-p1
version/ibm qradar security information and event manager/7.1.1-p2
version/ibm qradar security information and event manager/7.1.1-p3
version/ibm qradar security information and event manager/7.1.2
version/ibm qradar security information and event manager/7.1.2-p1
version/ibm qradar security information and event manager/7.1.2-p10
version/ibm qradar security information and event manager/7.1.2-p11
version/ibm qradar security information and event manager/7.1.2-p12
version/ibm qradar security information and event manager/7.1.2-p13
version/ibm qradar security information and event manager/7.1.2-p2
version/ibm qradar security information and event manager/7.1.2-p3
version/ibm qradar security information and event manager/7.1.2-p4
version/ibm qradar security information and event manager/7.1.2-p5
version/ibm qradar security information and event manager/7.1.2-p6
version/ibm qradar security information and event manager/7.1.2-p7
version/ibm qradar security information and event manager/7.1.2-p8
version/ibm qradar security information and event manager/7.1.2-p9
version/ibm qradar security information and event manager/7.2
version/ibm qradar security information and event manager/7.2.0
version/ibm qradar security information and event manager/7.2.0-p1
version/ibm qradar security information and event manager/7.2.0-p2
version/ibm qradar security information and event manager/7.2.0-p3
version/ibm qradar security information and event manager/7.2.1
version/ibm qradar security information and event manager/7.2.1-p1
version/ibm qradar security information and event manager/7.2.1-p2
version/ibm qradar security information and event manager/7.2.1-p3
version/ibm qradar security information and event manager/7.2.2
version/ibm qradar security information and event manager/7.2.2-p1
version/ibm qradar security information and event manager/7.2.2-p2
version/ibm qradar security information and event manager/7.2.2-p3
version/ibm qradar security information and event manager/7.2.2-p4
version/ibm qradar security information and event manager/7.2.3
version/ibm qradar security information and event manager/7.2.3-p1
version/ibm qradar security information and event manager/7.2.3-p2
version/ibm qradar security information and event manager/7.2.3-p3
version/ibm qradar security information and event manager/7.2.3-p4
version/ibm qradar security information and event manager/7.2.4
version/ibm qradar security information and event manager/7.2.4-p1
version/ibm qradar security information and event manager/7.2.4-p2
version/ibm qradar security information and event manager/7.2.4-p3
version/ibm qradar security information and event manager/7.2.4-p4
version/ibm qradar security information and event manager/7.2.4-p5
version/ibm qradar security information and event manager/7.2.4-p6
version/ibm qradar security information and event manager/7.2.5
version/ibm qradar security information and event manager/7.2.5-p1
version/ibm qradar security information and event manager/7.2.5-p2
version/ibm qradar security information and event manager/7.2.5-p3
version/ibm qradar security information and event manager/7.2.5-p4
version/ibm qradar security information and event manager/7.2.5-p5
version/ibm qradar security information and event manager/7.2.5-p6
version/ibm qradar security information and event manager/7.2.6
version/ibm qradar security information and event manager/7.2.6-p1
version/ibm qradar security information and event manager/7.2.6-p2
version/ibm qradar security information and event manager/7.2.6-p3
version/ibm qradar security information and event manager/7.2.6-p4
version/ibm qradar security information and event manager/7.2.6-p5
version/ibm qradar security information and event manager/7.2.6-p6
version/ibm qradar security information and event manager/7.2.6-p7
version/ibm qradar security information and event manager/7.2.7
version/ibm qradar security information and event manager/7.2.7-p1
version/ibm qradar security information and event manager/7.2.7-p2
version/ibm qradar security information and event manager/7.2.7-p3
version/ibm qradar security information and event manager/7.2.7-p4
version/ibm qradar security information and event manager/7.2.8
version/ibm qradar security information and event manager/7.2.8-p1
version/ibm qradar security information and event manager/7.2.8-p10
version/ibm qradar security information and event manager/7.2.8-p11
version/ibm qradar security information and event manager/7.2.8-p12
version/ibm qradar security information and event manager/7.2.8-p13
version/ibm qradar security information and event manager/7.2.8-p14
version/ibm qradar security information and event manager/7.2.8-p15
version/ibm qradar security information and event manager/7.2.8-p16
version/ibm qradar security information and event manager/7.2.8-p2
version/ibm qradar security information and event manager/7.2.8-p3
version/ibm qradar security information and event manager/7.2.8-p4
version/ibm qradar security information and event manager/7.2.8-p5
version/ibm qradar security information and event manager/7.2.8-p6
version/ibm qradar security information and event manager/7.2.8-p7
version/ibm qradar security information and event manager/7.2.8-p8
version/ibm qradar security information and event manager/7.2.8-p9
version/ibm qradar security information and event manager/7.2.8.15
version/ibm qradar security information and event manager/7.2.9
canonical/ibm qradar vulnerability manager
version/ibm qradar vulnerability manager/7.2.0
version/ibm qradar vulnerability manager/7.2.1
version/ibm qradar vulnerability manager/7.2.2
version/ibm qradar vulnerability manager/7.2.3
version/ibm qradar vulnerability manager/7.2.4
version/ibm qradar vulnerability manager/7.2.6-p1
version/ibm qradar vulnerability manager/7.2.6-p2
version/ibm qradar vulnerability manager/7.2.6-p3
version/ibm qradar vulnerability manager/7.2.6-p4
version/ibm qradar vulnerability manager/7.2.6-p5
version/ibm qradar vulnerability manager/7.2.6-p6
version/ibm qradar vulnerability manager/7.2.6-p7
version/ibm qradar vulnerability manager/7.2.8
version/ibm qradar vulnerability manager/7.2.8-p1
version/ibm qradar vulnerability manager/7.2.8-p10
version/ibm qradar vulnerability manager/7.2.8-p11
version/ibm qradar vulnerability manager/7.2.8-p12
version/ibm qradar vulnerability manager/7.2.8-p13
version/ibm qradar vulnerability manager/7.2.8-p14
version/ibm qradar vulnerability manager/7.2.8-p15
version/ibm qradar vulnerability manager/7.2.8-p16
version/ibm qradar vulnerability manager/7.2.8-p17
version/ibm qradar vulnerability manager/7.2.8-p2
version/ibm qradar vulnerability manager/7.2.8-p3
version/ibm qradar vulnerability manager/7.2.8-p4
version/ibm qradar vulnerability manager/7.2.8-p5
version/ibm qradar vulnerability manager/7.2.8-p6
version/ibm qradar vulnerability manager/7.2.8-p7
version/ibm qradar vulnerability manager/7.2.8-p8
version/ibm qradar vulnerability manager/7.2.8-p9
canonical/ibm smartcloud entry appliance
version/ibm smartcloud entry appliance/2.3.0
version/ibm smartcloud entry appliance/2.4.0
version/ibm smartcloud entry appliance/3.1.0
version/ibm smartcloud entry appliance/3.2.0
canonical/ibm smartcloud provisioning
version/ibm smartcloud provisioning/2.1.0
canonical/ibm software defined network for virtual environments
canonical/ibm starter kit for cloud
version/ibm starter kit for cloud/2.2.0
canonical/ibm workload deployer
version/ibm workload deployer/3.1.0
version/ibm workload deployer/3.1.0.7
canonical/ibm security access manager for mobile 8.0 firmware
version/ibm security access manager for mobile 8.0 firmware/8.0.0.1
version/ibm security access manager for mobile 8.0 firmware/8.0.0.2
version/ibm security access manager for mobile 8.0 firmware/8.0.0.3
version/ibm security access manager for mobile 8.0 firmware/8.0.0.5
canonical/ibm security access manager for web 7.0 firmware
version/ibm security access manager for web 7.0 firmware/7.0.0.1
version/ibm security access manager for web 7.0 firmware/7.0.0.2
version/ibm security access manager for web 7.0 firmware/7.0.0.3
version/ibm security access manager for web 7.0 firmware/7.0.0.4
version/ibm security access manager for web 7.0 firmware/7.0.0.5
version/ibm security access manager for web 7.0 firmware/7.0.0.6
version/ibm security access manager for web 7.0 firmware/7.0.0.7
version/ibm security access manager for web 7.0 firmware/7.0.0.8
canonical/ibm security access manager for web 8.0 firmware
version/ibm security access manager for web 8.0 firmware/8.0.0.2
version/ibm security access manager for web 8.0 firmware/8.0.0.3
version/ibm security access manager for web 8.0 firmware/8.0.0.5
canonical/ibm storwize v7000 firmware
version/ibm storwize v7000 firmware/1.1.0.0
version/ibm storwize v7000 firmware/1.5.0.0
version/ibm storwize v7000 firmware/7.2.0.0
version/ibm storwize v7000 firmware/7.3.0.0
canonical/ibm storwize v7000
canonical/ibm storwize v5000 firmware
version/ibm storwize v5000 firmware/1.1.0.0
version/ibm storwize v5000 firmware/7.2.0.0
version/ibm storwize v5000 firmware/7.3.0.0
canonical/ibm storwize v5000
canonical/ibm storwize v3700 firmware
version/ibm storwize v3700 firmware/1.1.0.0
version/ibm storwize v3700 firmware/7.2.0.0
version/ibm storwize v3700 firmware/7.3.0.0
canonical/ibm storwize v3700
canonical/ibm storwize v3500 firmware
version/ibm storwize v3500 firmware/1.1.0.0
version/ibm storwize v3500 firmware/7.2.0.0
version/ibm storwize v3500 firmware/7.3.0.0
canonical/ibm storwize v3500
canonical/ibm flex system v7000 firmware
version/ibm flex system v7000 firmware/1.1.0.0
version/ibm flex system v7000 firmware/7.2.0.0
version/ibm flex system v7000 firmware/7.3.0.0
canonical/ibm flex system v7000
canonical/ibm san volume controller firmware
version/ibm san volume controller firmware/1.1.0.0
version/ibm san volume controller firmware/7.2.0.0
version/ibm san volume controller firmware/7.3.0.0
canonical/ibm san volume controller
canonical/ibm stn6500 firmware
version/ibm stn6500 firmware/3.8.0.0
version/ibm stn6500 firmware/3.9.1.0
version/ibm stn6500 firmware/4.1.2.0
canonical/ibm stn6500
canonical/ibm stn6800 firmware
version/ibm stn6800 firmware/3.8.0.0
version/ibm stn6800 firmware/3.9.1.0
version/ibm stn6800 firmware/4.1.2.0
canonical/ibm stn6800
canonical/ibm stn7800 firmware
version/ibm stn7800 firmware/3.8.0.0
version/ibm stn7800 firmware/3.9.1.0
version/ibm stn7800 firmware/4.1.2.0
canonical/ibm stn7800
vendor/canonical
canonical/canonical ubuntu linux
version/canonical ubuntu linux/10.04
version/canonical ubuntu linux/12.04
version/canonical ubuntu linux/14.04
vendor/novell
canonical/novell zenworks configuration management
version/novell zenworks configuration management/10.3
version/novell zenworks configuration management/11
version/novell zenworks configuration management/11.1
version/novell zenworks configuration management/11.2
version/novell zenworks configuration management/11.3.0
canonical/novell open enterprise server
version/novell open enterprise server/2.0-sp3
version/novell open enterprise server/11.0-sp2
vendor/checkpoint
canonical/checkpoint security gateway
vendor/f5
canonical/f5 big-ip access policy manager
version/f5 big-ip access policy manager/10.1.0
version/f5 big-ip access policy manager/10.2.4
version/f5 big-ip access policy manager/11.0.0
version/f5 big-ip access policy manager/11.5.1
version/f5 big-ip access policy manager/11.6.0
canonical/f5 big-ip advanced firewall manager
version/f5 big-ip advanced firewall manager/11.3.0
version/f5 big-ip advanced firewall manager/11.5.1
version/f5 big-ip advanced firewall manager/11.6.0
canonical/f5 big-ip analytics
version/f5 big-ip analytics/11.0.0
version/f5 big-ip analytics/11.5.1
version/f5 big-ip analytics/11.6.0
canonical/f5 big-ip application acceleration manager
version/f5 big-ip application acceleration manager/11.4.0
version/f5 big-ip application acceleration manager/11.5.1
version/f5 big-ip application acceleration manager/11.6.0
canonical/f5 big-ip application security manager
version/f5 big-ip application security manager/10.0.0
version/f5 big-ip application security manager/10.2.4
version/f5 big-ip application security manager/11.0.0
version/f5 big-ip application security manager/11.5.1
version/f5 big-ip application security manager/11.6.0
canonical/f5 big-ip edge gateway
version/f5 big-ip edge gateway/10.1.0
version/f5 big-ip edge gateway/10.2.4
version/f5 big-ip edge gateway/11.0.0
version/f5 big-ip edge gateway/11.3.0
canonical/f5 big-ip global traffic manager
version/f5 big-ip global traffic manager/10.0.0
version/f5 big-ip global traffic manager/10.2.4
version/f5 big-ip global traffic manager/11.0.0
version/f5 big-ip global traffic manager/11.5.1
version/f5 big-ip global traffic manager/11.6.0
canonical/f5 big-ip link controller
version/f5 big-ip link controller/10.0.0
version/f5 big-ip link controller/10.2.4
version/f5 big-ip link controller/11.0.0
version/f5 big-ip link controller/11.5.1
version/f5 big-ip link controller/11.6.0
canonical/f5 big-ip local traffic manager
version/f5 big-ip local traffic manager/10.0.0
version/f5 big-ip local traffic manager/10.2.4
version/f5 big-ip local traffic manager/11.0.0
version/f5 big-ip local traffic manager/11.5.1
version/f5 big-ip local traffic manager/11.6.0
canonical/f5 big-ip policy enforcement manager
version/f5 big-ip policy enforcement manager/11.3.0
version/f5 big-ip policy enforcement manager/11.5.1
version/f5 big-ip policy enforcement manager/11.6.0
canonical/f5 big-ip protocol security module
version/f5 big-ip protocol security module/10.0.0
version/f5 big-ip protocol security module/10.2.4
version/f5 big-ip protocol security module/11.0.0
version/f5 big-ip protocol security module/11.4.1
canonical/f5 big-ip wan optimization manager
version/f5 big-ip wan optimization manager/10.0.0
version/f5 big-ip wan optimization manager/10.2.4
version/f5 big-ip wan optimization manager/11.0.0
version/f5 big-ip wan optimization manager/11.3.0
canonical/f5 big-ip webaccelerator
version/f5 big-ip webaccelerator/10.0.0
version/f5 big-ip webaccelerator/10.2.4
version/f5 big-ip webaccelerator/11.0.0
version/f5 big-ip webaccelerator/11.3.0
canonical/f5 big-iq cloud
version/f5 big-iq cloud/4.0.0
version/f5 big-iq cloud/4.4.0
canonical/f5 big-iq device
version/f5 big-iq device/4.2.0
version/f5 big-iq device/4.4.0
canonical/f5 big-iq security
version/f5 big-iq security/4.0.0
version/f5 big-iq security/4.4.0
canonical/f5 enterprise manager
version/f5 enterprise manager/2.1.0
version/f5 enterprise manager/2.3.0
version/f5 enterprise manager/3.0.0
version/f5 enterprise manager/3.1.1
canonical/f5 traffix signaling delivery controller
version/f5 traffix signaling delivery controller/4.0.0
version/f5 traffix signaling delivery controller/4.0.5
version/f5 traffix signaling delivery controller/3.3.2
version/f5 traffix signaling delivery controller/3.4.1
version/f5 traffix signaling delivery controller/3.5.1
version/f5 traffix signaling delivery controller/4.1.0
canonical/f5 arx firmware
version/f5 arx firmware/6.0.0
version/f5 arx firmware/6.4.0
canonical/f5 arx
vendor/citrix
canonical/citrix netscaler sdx firmware
version/citrix netscaler sdx firmware/10
version/citrix netscaler sdx firmware/10.5
canonical/citrix netscaler sdx
vendor/apple
canonical/apple mac os x
version/apple mac os x/10.0.0
vendor/vmware
canonical/vmware vcenter server appliance
version/vmware vcenter server appliance/5.0
version/vmware vcenter server appliance/5.0-update_1
version/vmware vcenter server appliance/5.0-update_2
version/vmware vcenter server appliance/5.1
version/vmware vcenter server appliance/5.1-update_1
version/vmware vcenter server appliance/5.1-update_2
version/vmware vcenter server appliance/5.5
version/vmware vcenter server appliance/5.5-update_1
canonical/vmware esx
version/vmware esx/4.0
version/vmware esx/4.1
canonical/gnu bourne-again shell (bash)

CVE-2014-6271: GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability

Remedy

Never miss a vulnerability like this again

Reference Links

Company

Resources

Contact