Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Sun, 05 Oct 2014 10:11:24 -0400 (EDT)
From: "David A. Wheeler" <dwheeler@...eeler.com>
To: "oss-security" <oss-security@...ts.openwall.com>
Subject: Re: Shellshock timeline (was: CVE-2014-6271:
 remote code execution through bash)

Everyone: Thank you VERY MUCH for your timeline corrections and additions on shellshock.

My updated document is here:
  http://www.dwheeler.com/essays/shellshock.html
The updated timeline is here:
  http://www.dwheeler.com/essays/shellshock.html#timeline

It also includes references to:
1. the *much* simpler vulnerability test posted by Solar Designer http://seclists.org/oss-sec/2014/q4/114
2. the more detailed test at https://raw.githubusercontent.com/hannob/bashcheck/master/bashcheck

--- David A. Wheeler

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.