Filr vulnerability with GNU Bash Remote Code Execution (aka ShellShock) and Mozilla NSS vulnerabilities

  • 7015715
  • 30-Sep-2014
  • 02-Oct-2014

Environment

Novell Filr 1.0.1
Novell Filr 1.0.0

Situation

Novell Filr appliances which run SLES-11-SP2 are affected by the GNU Bash Remote Code Execution vulnerability (also known as ShellShock or Bash Bug) and the Mozilla Network Security Services (NSS) vulnerability as detailed in the following Common Vulnerabilities and Exposures (CVE) identifiers:

Further information regarding these security issues can be found here:

Mozilla NSS:


Resolution

A security update is now available via the Novell Patch Finder for Novell Filr 1.0.0 and 1.0.1 appliances as 'Filr - Security Update 2'.

Feedback service temporarily unavailable. For content questions or problems, please contact Support.