CVE-2014-7817

Published: 24 November 2014

The wordexp function in GNU C Library (aka glibc) 2.21 does not enforce the WRDE_NOCMD flag, which allows context-dependent attackers to execute arbitrary commands, as demonstrated by input containing "$((`...`))".

Priority

Medium

Status

Package Release Status
eglibc
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 14.04 ESM (Trusty Tahr)
Released (2.19-0ubuntu6.4)
glibc
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Patches:
Upstream: https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=33ceaf6187b31ea15284ac65131749e1cb68d2ae
Upstream: https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=a39208bd7fb76c1b01c127b4c61f9bfd915bfe7c (trunk)
Upstream: http://www.openwall.com/lists/oss-security/2014/11/20/36