Patch Release Summary AlienVault v4.11.1 is now available as of September 26th, 2014.
Patch Releases are minimally disruptive to your USM / OSSIM deployment and are intended to fix only defects. They do not contain new functionality. Read the change log below and apply the patch during an appropriate service window.
This patch will eliminate the recently discovered Shellshock Bash vulnerability. See this blog post for more detailed information on Shellshock. USM and OSSIM v.4.11 and lower are currently known to be vulnerable. Update to v4.11.1 to eliminate the vulnerability.
Note: When installed this update will show as v4.11.0. The update was made to minimize the update necessary to the system. Only the 'bash' and 'apt' packages are updated in the process. Fixed Security Issues
ENG-97400 / ENG-97427 - Fixed Shellshock Bash vulnerability in the AlienVault appliance operating system
ENG-97391 - Fixed apt package vulnerability in the AlienVault appliance operating system
For more information on the security advisories related to this release, see here.
How to Verify The Update Once the update is completed you can verify that the update is successful by following the steps below.
Go to Configuration > Deployment
Select (double click) the AV component from the list to see the details of that component
Click on the number link next to the "Packages Installed" table item. This will open up the package list.
In the search button, type in "bash" (without the quotes). This will display the bash package.
You should see "4.1-3+deb6u2" as the bash version. If you see "4.1-3" it means it is not updated.