Solved

How can I update bash Mac OS 10.6.8 ?

Posted on 2014-10-07
3
348 Views
Last Modified: 2014-10-10
I would like to upgrade Bash on a Mac running OS 10.6.8 in order to protect against the Bash vulnerability.
Are there any patches for this version?
0
Comment
Question by:100questions
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 12

Expert Comment

by:Ganesh Kumar A
ID: 40366411
Note that Apple released a set of official patch versions of Bash on 2014-09-29. However, the support only goes as far back as Lion, not back to Snow Leopard. So, you are still stuck with building and installing your own patched version on Snow Leopard.

1.- Open bashUpdateLion.pkg in PackageMaker

2.- Goto project/raw editing mode and modify the functions “InstallationCheck” and “VolumeCheck” in the file “Distribution” to look like this:

function InstallationCheck(prefix) {
    return true; }

function VolumeCheck(prefix) {
    return true; }

3.- Hit “build” and choose a name for the installer package.
Bash update for Snow Leopard :
https://www.dropbox.com/s/b8ogdjq6h3tnq8d/BashUpdateSnowLeopard.pkg.zip?dl=0

Reference : http://hacksagogo.wordpress.com/2014/10/02/shell-shock-os-x-bash-update-installer-for-snow-leopard/
0
 
LVL 30

Accepted Solution

by:
serialband earned 500 total points
ID: 40367416
You can also update bash with homebrew and get bash version 4.3
brew install bash
sudo sh -c 'echo "/usr/local/bin/bash" >> /etc/shells'
chsh -s /usr/local/bin/bash
sudo mv /bin/bash /bin/bash-backup
sudo ln -s /usr/local/bin/bash /bin/bash

Open in new window


Or just download and compile it yourself and use apple's version 3.2
curl https://opensource.apple.com/tarballs/bash/bash-92.tar.gz | tar zxf -
cd bash-92/bash-3.2
curl https://ftp.gnu.org/pub/gnu/bash/bash-3.2-patches/bash32-052 | patch -p0;
curl https://ftp.gnu.org/pub/gnu/bash/bash-3.2-patches/bash32-053 | patch -p0;
curl https://ftp.gnu.org/pub/gnu/bash/bash-3.2-patches/bash32-054 | patch -p0;
curl https://ftp.gnu.org/pub/gnu/bash/bash-3.2-patches/bash32-055 | patch -p0
cd ..
xcodebuild
sudo cp /bin/bash /bin/bash.bak;
sudo cp /bin/sh /bin/sh.bak
sudo cp build/Release/bash /bin;
sudo cp build/Release/sh /bin
sudo chmod a-x /bin/bash.bak /bin/sh.bak

Open in new window


Do not reboot until you've tested it by opening a new terminal.  If you need to revert to the previous version,
sudo rm /bin/bash /bin/sh
sudo cp /bin/bash.bak /bin/bash;
sudo cp /bin/sh.bak /bin/sh
sudo chmod a+x /bin/bash /bin/sh

Open in new window


The official Apple versions came out before a few new CVEs came out, so to be certain you patched the latest holes, you may need to compile your own anyway.
0
 

Author Closing Comment

by:100questions
ID: 40373813
Have not tried this, I might just upgrade OS it might be easier.
0

Featured Post

Supports up to 4K resolution!

The VS192 2-Port 4K DisplayPort Splitter is perfect for anyone who needs to send one source of DisplayPort high definition video to two or four DisplayPort displays. The VS192 can split and also expand DisplayPort audio/video signal on two or four DisplayPort monitors.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article describes in detail how to set up the iPad in the Enterprise using iPCU aka iPhone Configuration Utility.  This could also be used for the iPhone although I have not detailed out any differences. Preparation as an iPad Administrator:…
A professional opinion on which Apple product to buy, and a tidbit about the WWDC.
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …

626 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question