GUN Bash "Shellshock" 安全漏洞
技术新闻
GUN Bash "Shellshock" 安全漏洞
2014-11-13
一种叫GNU Bash “Shellshock”的危险安全漏洞被发现, 这是种用于Linux / UNIX操作系统的常用命令行。京瓷公司调查了其产品,软件和服务是否会受到影响。结论如下,
打印机/复合机京瓷产品使用一个特殊的嵌入式Linux操作系统,该系统未从网络、操作面板、USB或者其他任何接口使用BASH命令。因此,京瓷打印机/复合机不会受到“Shellshock”漏洞的影响。
选购件"Bash"环境不会应用于以下京瓷选购件产品,因此也不会造成影响。
传真系统(*)
IB-23/IB-50/IB-51/IB-110
"Bash"环境不会应用于任何京瓷软件/实用工具,因此也不会造成影响。
GNU Bash "Shellshock" Security Vulnerability
November 13, 2014
A critical security vulnerability has been reported in the GNU Bash "Shellshock", which is a common command line used in many Linux/UNIX operating systems.
KYOCERA has investigated whether or not its products, software and services are affected. The results are as follows.
Printers/MFPsKYOCERA products use a special embedded version of the Linux Operating System. There is no access to the Bash prompt from the network, operation panel, USB, or any other interface, therefore, KYOCERA printers and MFPs are not susceptible to the “Shellshock” vulnerability.
Connectivity Options"Bash" environment is not implemented in following KYOCERA optional products, and therefore unaffected.
FAX System (*)
IB-23/IB-50/IB-51 / IB-110
"Bash" environment is not implemented in any KYOCERA software/utilities and therefore unaffected.
EFITM Fiery Printing System(s)The Fiery Printing System, optional on select KYOCERA color MFPs, uses an embedded Linux Operating System. EFI, the manufacturer of Fiery Printing Systems, has identified a vulnerability that they regard as a low security risk. EFI is currently working on a firmware patch, which will resolve this vulnerability, and it will be made available after December 1, 2014.