ShellShockãŒCGIã«åŠã¼ã™å½±éŸ¿ã‚’å°‘ã—éŽå¤§è©•ä¾¡ã—ã¦ã„ãŸã‹ã‚‚ - QiitaDeleted articles cannot be recovered. Draft of this article would be also deleted. Are you sure you want to delete this article?
Shellshockã®å½±éŸ¿ãŒåŠã¶ã‚±ãƒ¼ã‚¹ã‚’ã¾ã¨ã‚ã¦ã¿ãŸ - piyolog
ã“ã“ã§ã¯Bashã®è„†å¼±æ€§ ShellShockã®å½±éŸ¿ãŒåŠã¶ã‚±ãƒ¼ã‚¹ã¨ã—ã¦æƒ…å ±ãŒå‡ºã¦ã„ã‚‹ã‚‚ã®ã‚’ã¾ã¨ã‚ã¾ã™ã€‚è¨˜è¼‰æƒ…å ±ã¯piyokangoãŒè¦‹ã¤ã‘ãŸæƒ…å ±ã‚’ã¾ã¨ã‚ã¦ã„ã‚‹ã ã‘ã§ã‚ã‚Šã€å½“該脆弱性ã«ã‚ˆã‚‹å½±éŸ¿ãŒåŠã¶ã‚±ãƒ¼ã‚¹ã‚’ã™ã¹ã¦ç¶²ç¾…ã—ã¦ã„ã‚‹ã‚ã‘ã§ã¯ã‚ã‚Šã¾ã›ã‚“ã®ã§ã”注æ„ãã ã•ã„。 é–¢é€£æƒ…å ± bashã®è„†å¼±æ€§(CVE-2014-6271) #ShellShock ã®é–¢é€£ãƒªãƒ³ã‚¯ã‚’ã¾ã¨ã‚ã¦ã¿ãŸ 影響ãŒåŠã¶ã‚±ãƒ¼ã‚¹ã®å‰ææ¡ä»¶ 対象ã®ã‚·ã‚¹ãƒ†ãƒ ã§Bashã®è„†å¼±æ€§(CVE-2014-6271ã€CVE-2014-7169)ãŒä¿®æ£ã•ã‚Œã¦ã„ãªã„ 攻撃方法 方法 具体例 æ¡ä»¶ 能動的 Exploitã‚’HTTPリクエストやメールç‰ã‚’使ã£ã¦é€ã‚Šä»˜ã‘ã‚‹ (å‚考)BASHã®è„†å¼±æ€§ã§CGIスクリプトã«ã‚¢ãƒ¬ã•ã›ã¦ã¿ã¾ã—㟠攻撃者ãŒå¯¾è±¡ã¸ç›´æŽ¥æŽ¥ç¶šå¯èƒ½ å—å‹•çš„ Exploitを仕込んã ç½ ãƒšãƒ¼ã‚¸ã‚’è¨ç½®ã—攻撃対象ã«è¸ã¾ã›ã‚‹ (å‚考)ファイアウォール内ã®
bashã®è„†å¼±æ€§(CVE-2014-6271) #ShellShock ã®é–¢é€£ãƒªãƒ³ã‚¯ã‚’ã¾ã¨ã‚ã¦ã¿ãŸ - piyolog
bashã«è„†å¼±æ€§ãŒç¢ºèªã•ã‚ŒãŸã¨ã—ã¦é¨’ãŽã«ãªã£ã¦ã„ã¾ã™ã€‚ã“ã“ã§ã¯CVE-2014-6271ã«é–¢ã™ã‚‹æƒ…å ±ã‚’ã¾ã¨ã‚ã¾ã™ã€‚ #記載内容ã«ã¤ã„ã¦ã€èª¤ã£ã¦ã„ã‚‹ã€è¿½è¨˜ã—ãŸæ–¹ãŒã„ã„ç‰æƒ…å ±ãŒã”ã–ã„ã¾ã—ãŸã‚‰@piyokangoã¾ã§ã”連絡ãŠé¡˜ã„ã—ã¾ã™ã€‚ è„†å¼±æ€§æƒ…å ± 脆弱性ã®æ„›ç§° ShellShock Bashbug CVEç•ªå· Bash周りã§ç™ºè¡Œã•ã‚Œã¦ã„ã‚‹CVEã¯6ã¤ã€‚ãã®å†…詳細ãŒä¸æ˜Žãªã®ãŒ2ã¤ã€‚(CVE-2014-6277,CVE-2014-6278) CVE 発見者 æƒ³å®šè„…å¨ ç‰¹è¨˜ CVE-2014-6271 Stephane Chazelasæ° ä»»æ„ã®ã‚³ãƒ¼ãƒ‰å®Ÿè¡Œ ShellShockã®ç™ºç«¯ã¨ãªã£ãŸãƒã‚°ã€‚ CVE-2014-7169 Tavis Ormandyæ° ä»»æ„ã®ã‚³ãƒ¼ãƒ‰å®Ÿè¡Œ CVE-2014-6271ä¿®æ£æ¼ã‚Œã«ã‚ˆã‚‹è„†å¼±æ€§ CVE-2014-7186 Redhat DoS ãƒ¡ãƒ¢ãƒªç ´å£Š(Out-of-Bo
ã‚»ã‚ュリティホール memo - 2014.10
》 å€‹äººæƒ…å ±ã‚’å«ã‚€ãƒ¡ãƒ¼ãƒ«èª¤é€ä¿¡ã¨å¯¾å¿œã«ã¤ã„㦠(é¾è°·å¤§å¦, 10/30) é¾è°·å¤§å¦ã§ã¯ã€2014å¹´10月23日(木)17æ™‚é ƒã€10月25日(土)ã‹ã‚‰2日間ã«ã‚ãŸã‚Šå®Ÿæ–½ã—ã¾ã—ãŸç†å·¥å¦éƒ¨ç ”究室公開ã®é‹å–¶è£œåŠ©ã‚’ãŠã“ãªã†æœ¬å¦å¦ç”Ÿã‚¢ãƒ«ãƒã‚¤ãƒˆã§ã‚ã‚‹ç†å·¥å¦éƒ¨ãŠã‚ˆã³å¤§å¦é™¢ç†å·¥å¦ç ”究科ã®å¦ç”Ÿ105åã«å¯¾ã—ã€äº‹å‹™é€£çµ¡ã‚’ã™ã‚‹éš›ã«ã€ç†å·¥å¦éƒ¨ãŠã‚ˆã³å¤§å¦é™¢ç†å·¥å¦ç ”究科ã®å¦ç”Ÿ2,634å分ã®å€‹äººæƒ…å ±ï¼ˆç”Ÿå¹´æœˆæ—¥ã‚’é™¤ãã€æ°åã€ä½æ‰€ã€é›»è©±ç•ªå·ã€ãƒ¡ãƒ¼ãƒ«ã‚¢ãƒ‰ãƒ¬ã‚¹ãªã©ï¼‰ã‚’å«ã‚“ã メールを誤ã£ã¦é€ä¿¡ã—ã¾ã—ãŸã€‚ ã†ã‚ー orz ã©ã†ã—ã¦ãã†ãªã£ãŸâ€¦â€¦ã€‚ ã“れをå—ã‘ã€æœ¬å¦ã§ã¯ã€å¦å¤–ã¸ã®å€‹äººæƒ…å ±æµå‡ºã¨ã„ã†äº‹æ…‹ã‚’防ããŸã‚ã€å¦ç”Ÿã‚¢ãƒ«ãƒã‚¤ãƒˆã«ã€å€‹äººæƒ…å ±ã‚’å«ã‚€ã€èª¤é€ä¿¡ã—ãŸãƒ¡ãƒ¼ãƒ«ã®å‰Šé™¤ã‚’至急ä¾é ¼ã—ã€2014å¹´10月26日(日)åˆå‰ã«ã€ã™ã¹ã¦ã®å‡¦ç†ã®å®Œäº†ã‚’直接本人ã¨å¯¾é¢ã—ã¦ç¢ºèªã™ã‚‹ã¨ã¨ã‚‚ã«ã€2,634åã®å¦ç”Ÿã«å¯¾ã—ã¦ã€æµå‡ºã—ãŸå€‹äººæƒ…å ±ã®å†…容を通知ã—ãŠè©«
Bash bug: apply Florian's patch now (CVE-2014-6277 and CVE-2014-6278)
OK, rebuild bash and deploy Florian's unofficial patch or its now-upstream version now. If you're a distro maintainer, please consider doing the same. My previous post has more information about the original vulnerability (CVE-2014-6271). It also explains Tavis' and my original negative sentiment toward the original upstream patch. In short, the revised code did not stop bash from parsing the code
Bash bug: the other two RCEs, or how we chipped away at the original fix (CVE-2014-6277 and '78)
The patch that implements a prefix-based way to mitigate vulnerabilities in bash function exports has been out since last week and has been already picked up by most Linux vendors (plus by Apple). So, here's a quick overview of the key developments along the way, including two really interesting things: proof-of-concept test cases for two serious, previously non-public RCE bugs tracked as CVE-2014
bash ã®è„†å¼±æ€§ "Shell Shock" ã®ã‚ã£ã¡ã‚ƒç´°ã‹ã„話 (CVE-2014-6271) - ã‚‚ã‚ãš blog
※(2014/10/1 追記) 脆弱性ã®ç•ªå·ã‚’誤ã£ã¦ CVE-2014-6721 ã¨è¡¨è¨˜ã—ã¦ã—ã¾ã£ã¦ã„ã¾ã—㟠æ£ã—ã㯠"CVE-2014-6271" ã§ã™ 失礼致ã—ã¾ã—㟠※(2014/10/7 追記) 2014/10/7 14:00時点㧠Shell Shock ã¸ã®ä¿®æ£ãƒ‘ッãƒã¯6個 公開ã•ã‚Œã¦ã„ã¾ã™ æ—¢ã«å¯¾å¿œæ¸ˆã¿ã®ã‚·ã‚¹ãƒ†ãƒ ã§ã‚‚パッãƒã®æ¼ã‚ŒãŒãªã„ã‹æ³¨æ„ã—ã¦ãã ã•ã„ シェルã«è„†å¼±æ€§ãŒè¦‹ã¤ã‹ã£ãŸã‚‰ã—ã„ã§ã™ ã“ã®ã‚³ãƒžãƒ³ãƒ‰ã‚’実行ã™ã‚‹ã¨è„†å¼±æ€§ãŒã‚ã‚‹ãƒãƒ¼ã‚¸ãƒ§ãƒ³ã‹ã®ãƒã‚§ãƒƒã‚¯ãŒã§ãるよã†ã§ã™ $ env x='() { :;}; echo vulnerable' bash -c "echo this is a test" 以下ã®ã‚ˆã†ã«è¡¨ç¤ºã•ã‚ŒãŸã‚‰ã‚¢ã‚¦ãƒˆã§ã™ vulnerable this is a test ã©ã†ã‚„らã€ã“ã®ã‚³ãƒžãƒ³ãƒ‰ãŒæ£å¸¸ã«å®Ÿè¡Œã§ãã‚‹ã¨ã„ã†ã®ãŒã“ã®è„†å¼±æ€§ã®æ£ä½“らã—ã〠echo vuln
CVE-2014-6271 アドãƒã‚¤ã‚¶ãƒª
2014 å¹´ 9 月 25 æ—¥åˆå¾Œ 4 時 (大洋平標準時) - æ›´æ–° CVE-2014-6271 ãŠã‚ˆã³ CVE-2014-7169 を確èªã—ãŸçµæžœã€API ãŠã‚ˆã³ãƒãƒƒã‚¯ã‚¨ãƒ³ãƒ‰ã¯å½±éŸ¿ã‚’å—ã‘ãªã„ã¨åˆ¤æ–ã—ã¾ã—ãŸã€‚以下ã«è¨˜è¼‰ã•ã‚Œã¦ã„ã‚‹å ´åˆã‚’除ãã€ã‚µãƒ¼ãƒ“スã¯å½±éŸ¿ã‚’å—ã‘ã¾ã›ã‚“。 ã“れら㮠2 ã¤ã® CVE ã¯ã€Linux ホストã§åºƒãデプãƒã‚¤ã•ã‚Œä½¿ç”¨ã•ã‚Œã¦ã„る標準㮠bash ãƒã‚°ã‚¤ãƒ³ã‚·ã‚§ãƒ«ã«å½±éŸ¿ã‚’与ãˆã¾ã™ã€‚ã™ã¹ã¦ã® Linux ホストをãƒã‚§ãƒƒã‚¯ã—ã¦ã€æœ€æ–°ãƒãƒ¼ã‚¸ãƒ§ãƒ³ã® bash シェルãŒã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã•ã‚Œã¦ã„ã‚‹ã“ã¨ã‚’確èªã™ã‚‹ã“ã¨ã‚’ãŠå‹§ã‚ã—ã¾ã™ã€‚ Amazon Linux ã‚’ã”使用ã®å ´åˆã€2014 å¹´ 9 月 14 æ—¥åˆå¾Œ 12 時 30 分 (太平洋標準時) 以é™ã«èµ·å‹•ã•ã‚ŒãŸãƒ‡ãƒ•ã‚©ãƒ«ãƒˆã® Amazon Linux AMI ã®ã‚¤ãƒ³ã‚¹ã‚¿ãƒ³ã‚¹ã¯ã€ã“れらã®æ›´æ–°ã‚’自動的ã«ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã—ã¾ã™ã€‚Amazon Li
無効ãªURLã§ã™
無効ãªURLã§ã™ã€‚ プãƒã‚°ãƒ©ãƒ è¨å®šã®åæ˜ å¾…ã¡ã§ã‚ã‚‹å¯èƒ½æ€§ãŒã‚ã‚Šã¾ã™ã€‚ ã—ã°ã‚‰ã時間をãŠã„ã¦å†åº¦ã‚¢ã‚¯ã‚»ã‚¹ã‚’ãŠè©¦ã—ãã ã•ã„。
1
ランã‚ング
ランã‚ング
ランã‚ング
リリースã€éšœå®³æƒ…å ±ãªã©ã®ã‚µãƒ¼ãƒ“スã®ãŠçŸ¥ã‚‰ã›
最新ã®äººæ°—エントリーã®é…ä¿¡
j次ã®ãƒ–ックマーク
kå‰ã®ãƒ–ックマーク
lã‚ã¨ã§èªã‚€
eコメント一覧を開ã
oページを開ã
{{#tags}}- {{label}}
{{/tags}}