AIX/VIOS is not affected by the Bash vulnerabilities (CVE-2014-6271, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187, CVE-2014-6277, and CVE-2014-6278)
AIX/VIOS is not vulnerable to the Bash vulnerabilities that have been referred to as “Bash Bug” or “Shellshock” and the two memory corruption vulnerabilities.
AIX/VIOS in all editions and all platforms is NOT vulnerable to the Bash vulnerabilities (CVE-2014-6271, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187, CVE-2014-6277, and CVE-2014-6278).
Note: AIX Toolbox for Linux Applications is affected. Please see the following link for more information.
IBM recommends that you review your entire environment to identify vulnerable releases of Bash including your Operating Systems and take appropriate mitigation and remediation actions. Please contact your Operating System provider for more information.
Change History: 30 September 2014: original document published
More support for:
IBM Enterprise Edition for AIX
Software version: 5.3, 6.1, 7.1
Operating system(s): AIX
Reference #: T1021284
Modified date: 30 September 2014