Oval Definition:oval:com.redhat.rhsa:def:20211679
Revision Date:2021-05-18Version:636
Title:RHSA-2021:1679: bash security and bug fix update (Low)
Description:The bash packages provide Bash (Bourne-again shell), which is the default shell for Red Hat Enterprise Linux.

Security Fix(es):

  • bash: when effective UID is not equal to its real UID the saved UID is not dropped (CVE-2019-18276)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

    Additional Changes:

    For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2019-18276
    RHSA-2021:1679
    Platform(s):Red Hat Enterprise Linux 8
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 8 is installed
  • OR Red Hat CoreOS 4 is installed
  • AND
  • bash is earlier than 0:4.4.19-14.el8
  • AND bash is signed with Red Hat redhatrelease2 key
  • bash-doc is earlier than 0:4.4.19-14.el8
  • AND bash-doc is signed with Red Hat redhatrelease2 key
    • BACK