The original guide did only cover CVE-2014-6271. The guide has been updated at 2014-09-29 05:00 UTC to cover CVE-2014-7169, CVE-2014-7186, CVE-2014-7187, CVE-2014-6277 and CVE-2014-6278. If in doubt repeat the steps.
This page describes how to upgrade BASH on the StruxureWare Data Center Operation server.
- Open Webmin https://<server-ip>:10000
- Select “System”
- Select “Upload and Download”
- Upload the file bash_4.1-3+deb6u2_amd64.deb to /tmp
- SSH into the StruxureWare Data Center Operationserver
The expected output from the command looks like this:
To validate the vulnerability is resolved. Execute this command:
If the output looks like this, the vulnerability is resolved:
If the output says "vulnerable" something went wrong. Contact technical support.
The fix will work on StruxureWare Data Center Operation ver. 7.2.x, 7.3.x and 7.4