2014_10_01_Bash_vulnerability - xcat2/xcat-core GitHub Wiki

Extreme Cloud Administration Toolkit (xCAT) is not affected by the Bash vulnerabilities in the following Advisory CVEs:

• CVE-2014-6271
• CVE-2014-7169
• CVE-2014-7186
• CVE-2014-7187
• CVE-2014-6277
• CVE-2014-6278)

Abstract
Extreme Cloud Administration Toolkit (xCAT)is not vulnerable to the Bash vulnerabilities that have been referred to as “Bash Bug” or “Shellshock” and the two memory corruption vulnerabilities.

Content
Extreme Cloud Administration Toolkit (xCAT) in all editions and all platforms is NOT vulnerable to the Bash vulnerabilities (CVE-2014-6271, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187, CVE-2014-6277, and CVE-2014-6278).

Remediation
No action required for xCAT. Check your OS for patches.