Dangerous Security Flaw in Linux Systems

A fundamental flaw in one of the most basic functions of OS X, Linux, UNIX and related operating systems was revealed and patched (Sept. 24) by software developers. The Bash shell (or command-line interface) for UNIX-like systems, allows injection of random, possibly malicious, code following commands, and automatically executes that code without verifying it. Today’s patch prevents that code execution.

However, when I tried to install the patch in Linux Mint 17 Cinnamon edition from the Update Manager I got this:

W: Ignoring file ‘getdeb.list.bck’ in directory ‘/etc/apt/sources.list.d/’ as it has an invalid filename extension
W: Ignoring file ‘getdeb.list.bck’ in directory ‘/etc/apt/sources.list.d/’ as it has an invalid filename extension
W: Ignoring file ‘getdeb.list.bck’ in directory ‘/etc/apt/sources.list.d/’ as it has an invalid filename extension
W: Failed to fetch http://security.ubuntu.com/ubuntu/pool/main/b/bash/bash_4.3-7ubuntu1.2_amd64.deb
404 Not Found [IP: 91.189.91.14 80]

I solved this by typing in the command line:

sudo apt-get update && sudo apt-get install –only-upgrade bash

Then I again ran the Update Manager. Done.

Read More
http://www.bbc.com/news/technology-29361794
http://www.digitalocean.com/community/tutorials/how-to-protect-your-server-against-the-shellshock-bash-vulnerability

Published by

Jay Forrest

Jay N. Forrest is an IT professional, an ordained Humanist minister, and a Certified and Accredited Meditation Teacher.