Remove obsolete conffile /etc/bash_command_not_found (which leads to DOS if used)
Bug #379851 reported by
Daniel Hahler
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| command-not-found (Ubuntu) |
Fix Released
|
Medium
|
Michael Vogt | ||
Bug Description
Binary package hint: command-not-found
Please purge/remove the obsolete conffile /etc/bash_
I wanted to test command-not-found (and had the file there from a previous installation), sourced it and it resulted in a Denial Of Service, since the file's code looks as follows:
command_
command-not-found -- "$1" || return 127
}
Since "command-not-found" itself isn't found, this (apparently) spawns a lot of bash instances, until the computer locks up.
Using 0.2.34ubuntu3 on Karmic.
Related branches
| Changed in command-not-found (Ubuntu): | |
| importance: | Undecided → Medium |
| status: | New → Triaged |
| Changed in command-not-found (Ubuntu): | |
| assignee: | nobody → Michael Vogt (mvo) |
| status: | Triaged → In Progress |
Revision history for this message
| Launchpad Janitor (janitor) wrote | #1 |
| Changed in command-not-found (Ubuntu): | |
| status: | In Progress → Fix Released |
To post a comment you must log in.
This bug was fixed in the package command-not-found - 0.2.36ubuntu1
---------------
command-not-found (0.2.36ubuntu1) karmic; urgency=low
* scan.data: updated to current karmic
* scan.data: add exception for gftp (LP: #99708)
* debian/postinst:
- if old/leftover /etc/bash_
remove it (LP: #379851)
* debian/rules:
- build with DH_PYCENTRAL=
* CommandNotFound
- use try gettext if lgettext fails (LP: #282446)
* debian/copyright:
- fix location (LP: #314478)
* CommandNotFound
- be more robust about missing priority.txt (LP: #359784)
- add simple spelling correction (LP: #314486)
* debian/control:
- build for all python versions (LP: #366096)
-- Michael Vogt <email address hidden> Fri, 26 Jun 2009 13:58:24 +0200