Fragen? Antworten! Siehe auch: Alternativlos
Bug-Reported-by: Florian Weimer <[…]@redhat.com>There are two local buffer overflows in parse.y that can cause the shell to dump core when given many here-documents attached to a single command or many nested loops.
Bug-Reported-by: Michal Zalewski <[…]@coredump.cx> When bash is parsing a function definition that contains a here-document delimited by end-of-file (or end-of-string), it leaves the closing delimiter uninitialized. This can result in an invalid memory access when the parsed function is later copied.
Bug-Reported-by: Michal Zalewski <[…]@coredump.cx> A combination of nested command substitutions and function importing from the environment can cause bash to execute code appearing in the environment variable value following the function definition.Kurzer Hinweis: Wenn ihr irgendwo einen Patch von Florian Weimer oder Michal Zalewski seht, dann spielt den ein. Sofort.