Created
September 29, 2014 06:16
-
-
Save joacim-boive/4a6eea55ddc013f12f92 to your computer and use it in GitHub Desktop.
Patch OS X against Shellshock vunerability
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ # If you want to disable auto-imported functions, uncomment the following | |
| $ # export ADD_IMPORT_FUNCTIONS_PATCH=YES | |
| $ mkdir bash-fix | |
| $ cd bash-fix | |
| $ curl https://opensource.apple.com/tarballs/bash/bash-92.tar.gz | tar zxf - | |
| $ cd bash-92/bash-3.2 | |
| $ curl https://ftp.gnu.org/pub/gnu/bash/bash-3.2-patches/bash32-052 | patch -p0 | |
| $ curl https://ftp.gnu.org/pub/gnu/bash/bash-3.2-patches/bash32-053 | patch -p0 | |
| $ # See note above about ADD_IMPORT_FUNCTIONS_PATCH | |
| $ [ "$ADD_IMPORT_FUNCTIONS_PATCH" == "YES" ] && curl http://alblue.bandlem.com/import_functions.patch | patch -p0 | |
| $ [ "$ADD_IMPORT_FUNCTIONS_PATCH" == "YES" ] || curl https://ftp.gnu.org/pub/gnu/bash/bash-3.2-patches/bash32-054 | patch -p0 | |
| $ cd .. | |
| $ # Note: DO NOT ADD SUDO TO XCODEBUILD HERE | |
| $ xcodebuild | |
| $ build/Release/bash --version # GNU bash, version 3.2.54(1)-release | |
| $ build/Release/sh --version # GNU bash, version 3.2.54(1)-release | |
| $ sudo cp /bin/bash /bin/bash.old | |
| $ sudo cp /bin/sh /bin/sh.old | |
| $ sudo cp build/Release/bash /bin | |
| $ sudo cp build/Release/sh /bin |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment