« Simplivity and Shellshock Advisory | Main | CNet is reporting that Bash bug is “Bigger than Heartblead” »
Friday
Sep262014

Sophos products and the Bash vulnerability (Shellshock)

DateFriday, September 26, 2014 at 1:44PM
  • Article ID: 121444
  • Updated: 26 Sep 2014

In the light of the recent Bash vulnerability known as "Shellshock" (CVE-2014-6271 and CVE-2014-7169), we have reviewed its products to understand if any are at risk.

As far as we are aware, none of our products can be exploited by means of this bug.

image

As a matter of good security practice, we will be updating the various Sophos-supplied versions of Bash as soon as a stable and effective patch is available from the Bash maintainers.

For more information, see our Naked Security post: http://nakedsecurity.sophos.com/2014/09/25/bash-shellshock-vulnerability-what-you-need-to-know/

If you need more information or guidance, then please contact technical support.

AuthorBob Appleby | CommentPost a Comment |
in ,

PrintView Printer Friendly Version

EmailEmail Article to Friend

Reader Comments

There are no comments for this journal entry. To create a new comment, use the form below.

PostPost a New Comment

Enter your information below to add a new comment.

My response is on my own website »
Author Email (optional):
Author URL (optional):
Post:
 
Some HTML allowed: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <code> <em> <i> <strike> <strong>

Notify me of follow-up comments via email.