- Issued:
- 2009-01-20
- Updated:
- 2009-01-20
RHBA-2009:0116 - Bug Fix Advisory
Synopsis
bash bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Lightspeed patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated bash packages that resolve several issues are now available.
Description
Bash is the default shell for Red Hat Enterprise Linux.
These updated bash packages provide fixes for the following bugs:
- the NISPOM, DCID 6/3, and PCI security standards all call for the ability
to monitor the actions of the root user. The bash shell now supports this
auditing, though by default it is turned off.
- the builtin bash command 'fc' incorrectly handled the last command.
Calling 'fc -1' now correctly refers to the last command instead of the
penultimate one.
- the bash(1) man page has been updated to clarify the usages of the
'continue', 'break, 'suspend' and 'fg' builtins.
- the bash(1) man page has been updated to correctly describe the behavior
of the "%-" job specification operator, which always refers to the previous
job except when there is only one current job.
- certain scripts which used bash's arithmetic operations returned an
incorrect result, and caused further arithmetic operations to be ignored,
silently. This has been fixed in these updated packages.
All users of bash are advised to upgrade to these updated packages, which
resolve these issues.
Solution
Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.
This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188
Affected Products
- Red Hat Enterprise Linux Server 5 x86_64
- Red Hat Enterprise Linux Server 5 ia64
- Red Hat Enterprise Linux Server 5 i386
- Red Hat Enterprise Linux Workstation 5 x86_64
- Red Hat Enterprise Linux Workstation 5 i386
- Red Hat Enterprise Linux Desktop 5 x86_64
- Red Hat Enterprise Linux Desktop 5 i386
- Red Hat Enterprise Linux for IBM z Systems 5 s390x
- Red Hat Enterprise Linux for Power, big endian 5 ppc
- Red Hat Enterprise Linux Server from RHUI 5 x86_64
- Red Hat Enterprise Linux Server from RHUI 5 i386
Fixes
- BZ - 235021 - Changes to bash for auditing
- BZ - 438841 - "fc -e 'edit' -1" edits wrong command
- BZ - 446625 - manpage update for job specifications
- BZ - 453123 - [REGRESSION] Wrong input confuses bash's arithmetic unit permanently
- BZ - 453409 - man page alteration for suspend command
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 5
| SRPM | |
|---|---|
| bash-3.2-24.el5.src.rpm | SHA-256: 325d0bf9c0b96cad00d7ceef3537250be3f445c38ff1f677d22861c6e3644a21 |
| x86_64 | |
| bash-3.2-24.el5.x86_64.rpm | SHA-256: fdfca2713ed206dbb3608fc0dc45802ba71f91c447590b389ebb19138fa83ad3 |
| ia64 | |
| bash-3.2-24.el5.i386.rpm | SHA-256: 8b32d6b0e59aeca5de4449588916425b5916081eba99e1b16db670495c25c179 |
| bash-3.2-24.el5.ia64.rpm | SHA-256: 78f14a5331a55ebfb7384fd80dbef58b3441624aae384f22d0ca0b11de8f29af |
| i386 | |
| bash-3.2-24.el5.i386.rpm | SHA-256: 8b32d6b0e59aeca5de4449588916425b5916081eba99e1b16db670495c25c179 |
Red Hat Enterprise Linux Workstation 5
| SRPM | |
|---|---|
| bash-3.2-24.el5.src.rpm | SHA-256: 325d0bf9c0b96cad00d7ceef3537250be3f445c38ff1f677d22861c6e3644a21 |
| x86_64 | |
| bash-3.2-24.el5.x86_64.rpm | SHA-256: fdfca2713ed206dbb3608fc0dc45802ba71f91c447590b389ebb19138fa83ad3 |
| i386 | |
| bash-3.2-24.el5.i386.rpm | SHA-256: 8b32d6b0e59aeca5de4449588916425b5916081eba99e1b16db670495c25c179 |
Red Hat Enterprise Linux Desktop 5
| SRPM | |
|---|---|
| bash-3.2-24.el5.src.rpm | SHA-256: 325d0bf9c0b96cad00d7ceef3537250be3f445c38ff1f677d22861c6e3644a21 |
| x86_64 | |
| bash-3.2-24.el5.x86_64.rpm | SHA-256: fdfca2713ed206dbb3608fc0dc45802ba71f91c447590b389ebb19138fa83ad3 |
| i386 | |
| bash-3.2-24.el5.i386.rpm | SHA-256: 8b32d6b0e59aeca5de4449588916425b5916081eba99e1b16db670495c25c179 |
Red Hat Enterprise Linux for IBM z Systems 5
| SRPM | |
|---|---|
| bash-3.2-24.el5.src.rpm | SHA-256: 325d0bf9c0b96cad00d7ceef3537250be3f445c38ff1f677d22861c6e3644a21 |
| s390x | |
| bash-3.2-24.el5.s390x.rpm | SHA-256: 2cdd93cc4094462574d420fc99072f1c97df3afc064358740fcf3fb1e3d2d01a |
Red Hat Enterprise Linux for Power, big endian 5
| SRPM | |
|---|---|
| bash-3.2-24.el5.src.rpm | SHA-256: 325d0bf9c0b96cad00d7ceef3537250be3f445c38ff1f677d22861c6e3644a21 |
| ppc | |
| bash-3.2-24.el5.ppc.rpm | SHA-256: def2c2565ac017aca56248393e372c044d72e2cfc28310d62bf4d74bd4be14a8 |
Red Hat Enterprise Linux Server from RHUI 5
| SRPM | |
|---|---|
| bash-3.2-24.el5.src.rpm | SHA-256: 325d0bf9c0b96cad00d7ceef3537250be3f445c38ff1f677d22861c6e3644a21 |
| x86_64 | |
| bash-3.2-24.el5.x86_64.rpm | SHA-256: fdfca2713ed206dbb3608fc0dc45802ba71f91c447590b389ebb19138fa83ad3 |
| i386 | |
| bash-3.2-24.el5.i386.rpm | SHA-256: 8b32d6b0e59aeca5de4449588916425b5916081eba99e1b16db670495c25c179 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
