| Errata ID | 217 |
|---|---|
| Date | 2014-09-26 |
| Source package | bash |
| Fixed in version | 4.1-3.38.201409261347 |
| Description | There are two out-of-bounds array accesses in the bash parser, which were revealed in Red Hat's internal analysis for these issues and also independently reported by Todd Sabin: * Parser can allow out-of-bounds memory access while handling redir_stack (CVE-2014-7186) * Off-by-one error in deeply nested flow control constructs (CVE-2014-7187) |
| Additional notes | |
| CVE ID | CVE-2014-7186 CVE-2014-7187 |
| UCS Bug number | #36008 |
