Shellshock Vulnerability: How to fix/protect from it [Ubuntu/Mint]

Shellshock Vulnerability

Shellshock (CVE-2014-6271, CVE-2014-6277, CVE-2014-6278, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187) is a vulnerability in GNU’s bash shell that gives attackers access to run remote commands on a vulnerable system. If your system has not updated bash in since Tue Sep 30 2014: 1:32PM EST (See patch history), you’re most definitely vulnerable and have been since first boot. This security vulnerability affects versions 1.14 (released in 1994) to the most recent version 4.3 according to NVD. — #shellshock

To test your system, you can simply run this one liner below to find if you’re vulnerable.

wget https://shellshocker.net/shellshock_test.sh -q -O - | bash

Shellshock Vulnerability Result

If you have any VULNERABLE, so to fix/protect from it, just update the package bash using the apt-get:

sudo apt-get update && sudo apt-get install --only-upgrade bash

After the update, make a script test again. You can see a successful output on bottom of this article.

Note: If have an no update available, this means you have a old release of Ubuntu and need to update manually the package.

For Old Releases of Ubuntu/Mint or do a Manual Update

  1. Download the latest bash packaged from Trusty (latest stable version) from here: bash_*amd64.deb - 64 bits
    bash_*i386.deb - 32 bits

    Note: Download in keeping with your OS architecture. If you don’t know. Use the command arch to know this.

  2. Install the package manually (can’t install using gdebi):

    sudo dpkg -i bash_*.deb

Now re-test again:

wget https://shellshocker.net/shellshock_test.sh -q -O - | bash

Output:

CVE-2014-6271 (original shellshock): not vulnerable
CVE-2014-6277 (segfault): not vulnerable
CVE-2014-6278 (Florian’s patch): not vulnerable
CVE-2014-7169 (taviso bug): not vulnerable
CVE-2014-7186 (redir_stack bug): not vulnerable
CVE-2014-7187 (nested loops off by one): not vulnerable
CVE-2014-//// (exploit 3 on http://shellshocker.net/): not vulnerable

Congratulations! You protected from this vulnerability!

K3b: the best Burning Software for CD/DVD/Blu-ray

Already tested all softwares for burning in Linux (Brasero, Xfburn, GnomeBaker and Silicon Empire Burner). So for me, the best continues to be K3b:

K3b

To install:

$ sudo add-apt-repository ppa:brandonsnider/cdrtools
$ sudo apt-get update
$ sudo apt-get install k3b cdda2wav cdrecord mkisofs smake

Now to activate the translations for the K3b:

$ sudo apt-get install k3b-i18n

For install the Portuguese-BR language (my home language):

$ sudo apt-get install kde-l10n-ptbr

For more translations, see the list of packages:

$ sudo apt-cache search kde-l10n-*

Easy Ripping CDs to MP3 in Ubuntu/Mint

Asunder

Asunder is a graphical Audio CD ripper and encoder for Linux. You can easily save yours tracks from an Audio CD as any of WAV, MP3, OGG, FLAC, Opus, WavPack, Musepack, AAC, and Monkey’s Audio files.

To install:

$ sudo apt-get install asunder

To save/rip in MP3 format just install the package lame:

$ sudo apt-get install lame

Go Preferences » Encoder and check your encoder output (MP3 is a good choice).

Install a Samsung printer in Ubuntu/Mint

This will show how install a Sumsung printer (model ML-1865, without wireless support) in Ubuntu/Mint. This may work for another Samsung printer models. Please consult the supported printer models list.

You can either execute (as root or using sudo in a terminal):


  $ echo “deb http://www.bchemnet.com/suldr/ debian extra” | sudo tee -a /etc/apt/sources.list
  $ wget -O - http://www.bchemnet.com/suldr/suldr.gpg | sudo apt-key add -
  $ sudo apt-get update
  $ sudo apt-get install samsungmfp-driver  samsungmfp-configurator-qt4


Now you can simply install your printer from gui system-config-printer:


  $ system-config-printer


If not have system-config-printer?? So install it:


  $ sudo apt-get install system-config-printer

Install a Samsung printer in Ubuntu/Mint

This will show how install a Sumsung printer (model ML-1865, without wireless support) in Ubuntu/Mint. This may work for another Samsung printer models. Please consult the supported printer models list.

You can either execute (as root or using sudo in a terminal):

$ echo “deb http://www.bchemnet.com/suldr/ debian extra” | sudo tee -a /etc/apt/sources.list
$ wget -O - http://www.bchemnet.com/suldr/suldr.gpg | sudo apt-key add -
$ sudo apt-get update
$ sudo apt-get install samsungmfp-driver samsungmfp-configurator-qt4

Now you can simply install your printer from gui system-config-printer:

$ system-config-printer

If not have system-config-printer?? So install it:

$ sudo apt-get install system-config-printer

Error 1500, Another installation is in progress


  Error 1500, Another installation is in progress. You must complete that installation before continuing this one.


The only way to fix this error in Windows Installer is use the Msizap to clean all the cached files. This works in Windows 7.

Kill/close all “msiexec.exe” process instances. Use the task manager (CTRL+SHIFT+ESC).
Download the “msizap.exe" (mirror 1, mirror 2) and execute the clean procedure:


  msizap.exe !g

Repeat the command as you needed to get the output “No product/patch data was found.”. Like this:


  MsiZapInfo: Performing operations for user  S-1-5-21-89211237-1187725042-2203519349-1000
  Removing orphaned cached files.
  No product/patch data was found.


Note: This procedure may resolve many others Windows Installer related errors or to remove orphaned cached data files to increase free disk space.

Sources:MSIZAP windows installer cleanup | AyesakMSIZAP.exe — The only way to clean up windowsinstallerHowto: Use msizap to remove orphaned cached Windows Installer Data Files to increase free disk space

Error 1500, Another installation is in progress

Error 1500, Another installation is in progress. You must complete that installation before continuing this one.

The only way to fix this error in Windows Installer is use the Msizap to clean all the cached files. This works in Windows 7.

  1. Kill/close all “msiexec.exe” process instances. Use the task manager (CTRL+SHIFT+ESC).

  2. Download the “msizap.exe" (mirror 1, mirror 2) and execute the clean procedure:

    msizap.exe !g

Repeat the command as you needed to get the output “No product/patch data was found.”. Like this:

MsiZapInfo: Performing operations for user S-1-5-21-89211237-1187725042-2203519349-1000
Removing orphaned cached files.
No product/patch data was found.

Note: This procedure may resolve many others Windows Installer related errors or to remove orphaned cached data files to increase free disk space.

Sources:
MSIZAP windows installer cleanup | Ayesak
MSIZAP.exe — The only way to clean up windowsinstaller
Howto: Use msizap to remove orphaned cached Windows Installer Data Files to increase free disk space