shellshock / bash bug

More
29 Sep 2014 23:20 #51667 by jmelson
Anybody know how to update bash on a 10.04 LinuxCNC system?

I did my 12.04 Ubuntu system with these commands :
sudo apt-get upgrade
sudo apt-get install --only-upgrade bash

but on 10.04 with rtai, I got:
E: Sense only is not understood, try true or false on the install command.

So, I tried it without the --only-upgrade, but then I get :
The following packages will be upgraded:
bash
1 upgraded, 0 newly installed, 0 to remove and 1188 not upgraded.
Need to get 583kB of archives.
After this operation, 2,208kB disk space will be freed.
WARNING: The following packages cannot be authenticated!
bash
Install these packages without verification [y/N]? y
Err cz.archive.ubuntu.com/ubuntu/ oneiric/main bash 4.2-0ubuntu4
404 Not Found
Failed to fetch cz.archive.ubuntu.com/ubuntu/pool/main/b....2-0ubuntu4_i386.deb 404 Not Found
E: Unable to fetch some archives, maybe run apt-get update or try with --fix-missing?

--fix-missing doesn't help, either.

Anybody know what to do?

Thanks,

Jon

Please Log in or Create an account to join the conversation.

More
30 Sep 2014 15:00 #51678 by ArcEye
Replied by ArcEye on topic shellshock / bash bug
Hi Jon

There is info here about how to download the patch and patch non-supported versions Ubuntu.

askubuntu.com/questions/528101/what-is-t...-and-how-do-i-fix-it

There is also test to check that the vulnerability has been fixed

regards

Please Log in or Create an account to join the conversation.

More
30 Sep 2014 22:48 #51690 by jmelson
Yes, and it DOES NOT WORK! There is some repo in Czech republic that has gone away:
Err cz.archive.ubuntu.com/ubuntu/ oneiric/main bash 4.2-0ubuntu4
404 Not Found
Failed to fetch cz.archive.ubuntu.com/ubuntu/pool/main/b....2-0ubuntu4_i386.deb 404 Not Found
E: Unable to fetch some archives, maybe run apt-get update or try with --fix-missing?

I probably need to manually update the repo list, but don't know specifically what to do about this
missing repo.

Anybody know?

I believe this is a problem specific to the 10.04-rtai kernel and the repo list distributed
with the 10.04 LinuxCNC distribution.

Thanks,

Jon

Please Log in or Create an account to join the conversation.

More
30 Sep 2014 23:16 #51691 by ArcEye
Hi Jon

It IS there

cz.archive.ubuntu.com/pool/main/b/bash/

just slightly different addressing

I think you need 4.3.7 minimum to get a version with the fix in

regards

Please Log in or Create an account to join the conversation.

More
01 Oct 2014 00:39 #51697 by jmelson
Well, /proc/version shows :
Linux version 2.6.32-122-rtai (root@moses-6core) (gcc version 4.4.3 (Ubuntu 4.4.3-4ubuntu5) ) #rtai SMP Tue Jul 27 12:
44:07 CDT 2010

So, that seems later than 4.3.7, if that is what you are referring to.

I have tried various variations of the last line of the file
/etc/apt/sources.list, but get 404 errors on all of them. Can you
give me the exact deb line for this? In mine, it is the
only repo from CZ, and is the last line of the sources.list
file.

Thanks,

Jon

Please Log in or Create an account to join the conversation.

More
01 Oct 2014 03:44 #51699 by jmelson
OK, got it fixed. Apparently that cz repo was preventing the apt-get update from actually updating the repo list.
When I just commented it out and re-ran the update, I got some updated files loaded. Then, a
sudo apt-get install bash

did update the bash file. (The commands suggested all over the net with
sudo apt-get --only-upgrade bash do not work, apparently the version of
apt-get on 10.04 don't know this option.)

Curiously, bash still reports it is version 4.1.5, but it passes the vulnerability test.
It also shows the original file was created a 3 AM today.

I'm not sure if that cz repo is part of all 10.04 LinuxCNC installs, or was something added later
while hacking on this system.

Jon

Please Log in or Create an account to join the conversation.

More
01 Oct 2014 14:54 #51702 by ArcEye

I'm not sure if that cz repo is part of all 10.04 LinuxCNC installs, or was something added later
while hacking on this system.


I suspect you are right, especially as you were trying to access the oneric repo not the lucid one.

Must have been something you wanted was only available in 11.10 and the entry got left in

Anyway sorted now

regards

Please Log in or Create an account to join the conversation.

Time to create page: 0.082 seconds
Powered by Kunena Forum