root@staginglms:/usr/ports/shells/bash # ls -l | grep Sep
-rw-r--r-- 1 root wheel 3096 Sep 24 12:05 Makefile
-rw-r--r-- 1 root wheel 3185 Sep 24 12:05 distinfo
drwxr-xr-x 2 root wheel 9 Sep 25 08:33 files
portsnap update
and extract
and when I run portupgrade bash
:[Reading data from pkg(8) ... - 33 packages found - done]
aronduby said:I'm a FreeBSD noob, any help getting bash updated? So far I ranportsnap update
andextract
and when I runportupgrade bash
:
Code:[Reading data from pkg(8) ... - 33 packages found - done]
But the vulnerability is still there and I'm still on version 4.3.11.
DutchDaemon said:aronduby said:I'm a FreeBSD noob, any help getting bash updated? So far I ranportsnap update
andextract
and when I runportupgrade bash
:
Code:[Reading data from pkg(8) ... - 33 packages found - done]
But the vulnerability is still there and I'm still on version 4.3.11.
Read portsnap(8), and look at the fetch directive. You can't update anything you did not fetch first.
portsnap fetch
and update
and it says it's up to date. If I run pkg_version -v
then I get:(port has 4.3.25_1)
portsnap fetch update
the command portmaster -a
. portupgrade -a
... I think there will more ports needs updating than only bash).portmaster - command not found
cd /usr/ports/ports-mgmt/portmaster
and make install clean
).man portupgrade
-R
--upward-recursive Act on all those packages required by the given
packages as well. (When specified with -F, fetch
recursively, including the brand new, uninstalled
ports that an upgraded port requires)
Portupgrade -R
will work on packages depend on - in this case shell/bash. I think you have nothing installed that's depending on shell/bash. portupgrade -a (all)
should do it.manas said:I didn't get an email about this even though I am on the security mailing list. :q
kpa said:manas said:I didn't get an email about this even though I am on the security mailing list. :q
It's not a security problem in the FreeBSD operating system but in third party software. If you look at the mailing list archives you'll find zero announcements concerning other third party software that have had some serious vulnerabilities, for example www/chromium.
Unfortunately shell by default is BASHSirDice said:First things first, FreeBSD 7.2 has been End-of-Life since June 2010 and is not supported anymore. I strongly advise you to upgrade to a supported version. Second, on FreeBSD bash is not installed by default. It is therefor not a default shell (unless the previous administrator configured it to be the default shell which is very unlikely).
echo $SHELL
/usr/local/bin/bash
bash --version
GNU bash, version 4.1.7(0)-release (i386-portbld-freebsd7.2)
pgreplife said:Unfortunately shell by default is BASH
Can I compile bash from fresh source code for FreeBSD 7.2? Or just change on tcsh or sh shell?Code:echo $SHELL /usr/local/bin/bash bash --version GNU bash, version 4.1.7(0)-release (i386-portbld-freebsd7.2)