www.zeroshell.org Forum Index www.zeroshell.org
Linux Distribution for server and embedded devices
 
 SearchSearch  RegisterRegister  UsergroupsUsergroups 
 ProfileProfile  Log inLog in  Log in to check your private messagesPrivate Message 

New Vulnerabilities and new release

 
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> ZeroShell
View previous topic :: View next topic  
Author Message
fulvio
Site Admin


Joined: 01 Nov 2006
Posts: 1073

PostPosted: Fri Oct 17, 2014 8:26 pm    Post subject: New Vulnerabilities and new release Reply with quote

Hi,
Zeroshell 3.2.1 should replace all previous releases. After releasing Zeroshell 3.2.0, two new vulnerabilities of the Bash have been identified. These vulnerabilities are critical because they allow the execution of not authenticated commands by the web interface or via the login page of the Captive Portal. In addition, OpenSSL has been updated to fix more security problems affecting the Zeroshell web interface, the Captive Portal, the VPN with OpenVPN, the RADIUS server and all the services that use SSLv3.
Due to the severity of these vulnerabilities, it is recommended upgrading all previous releases. The releases 3.0.0, 3.1.0 and 3.2.0 can be updated automatically via the Package Manager directly to Zeroshell 3.2.1.

Regards
Fulvio
Back to top
View user's profile Send private message Send e-mail
Display posts from previous:   
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> ZeroShell All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2005 phpBB Group