centos6中带的bash版本为4.1.2 在申请三级等保过程中检查出GNU BASH远程漏洞,解决这个问题可以通过手动更新BASH到最新4.4版来解决。
# wget http://ftp.gnu.org/gnu/bash/bash-4.4-rc1.tar.gz
# tar zxvf bash-4.4-rc1.tar.gz
# cd bash-4.4-rc1
# ./configure --prefix=/usr/local/bash --bindir=/bin
# make && make install
# /bin/bash --version
------------------------------------------------------------------------------------------------------------------------
[root@localhost bash-4.4-rc1]# /bin/bash --version
GNU bash, version 4.4.0(1)-rc1 (x86_64-unknown-linux-gnu)
Copyright (C) 2015 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later
This is free software; you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.