Fluid Attacks Database

Description

A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parameter_transform. This issue may lead to memory problems.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 12	bash	>=0 <5.2-1	5.2-1
debian 11	bash	=5.1-2 \|\| =5.1-2+deb11u1 \|\| =5.1-3 \|\| =5.1-3.1 \|\| =5.1-4 \|\| =5.1-5 \|\| =5.1-6 \|\| =5.1-6.1 \|\| =5.2+dfsg-0.1 \|\| =5.2-1 \|\| =5.2-2 \|\| =5.2-3 \|\| =5.2.15-1 \|\| =5.2.15-2 \|\| =5.2.15-2+loong64 \|\| =5.2.21-1 \|\| =5.2.21-2 \|\| =5.2.21-2.1 \|\| =5.2.32-1 \|\| =5.2.37-1 \|\| =5.2.37-1.1 \|\| =5.2.37-2 \|\| =5.2~beta-1 \|\| =5.2~rc1-1 \|\| =5.2~rc2-1 \|\| =5.2~rc2-2 \|\| =5.3-1 \|\| =5.3-2 \|\| =5.3~alpha1-1 \|\| =5.3~beta1-1 \|\| =5.3~rc1-1 \|\| =5.3~rc2-1	-
debian 13	bash	>=0 <5.2-1	5.2-1
debian 14	bash	>=0 <5.2-1	5.2-1
rpm rhel6	bash	-	-
rpm rhel9	bash	<0:5.1.8-6.el9_1	0:5.1.8-6.el9_1

Aliases

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.