The Latest QNAP Networks News
Product and Solution Information, Press Releases, Announcements
QNAP Releases Qfix v1.0.2 to Fix Shellshock for Non-QTS 4.1.1 Build 1003 Users | |
Posted: Thu Oct 23, 2014 02:11:52 PM | |
Taipei, Taiwan, October 23, 2014 – QNAP® Systems, Inc. today released the Qfix for Bash security patch v1.0.2 (hereafter referred to as "this Qfix") for its Turbo NAS lineup with an official GNU Bash patch update. This Qfix includes all fix as of QTS 4.1.1 Build 1003 and is suggested for all Turbo NAS users who have not updated to QTS 4.1.1 Build 1003. This Qfix has fixed the GNU Bash Environment Variable Command Injection Vulnerability (CVE-2014-6271, CVE-2014-7169, CVE-2014-6277, CVE-2014-6278, CVE-2014-7186, and CVE-2014-7187), also known as "Shellshock," that can allow attackers to gain remote control over UNIX/Linux-based systems, and is now available for Turbo NAS running QTS 3.8.3, QTS 3.8.4, QTS 4.0.7, QTS 4.1.0, and QTS 4.1.1 from QNAP's official download site (http://www.qnap.com/download) for the following models (a system reboot is advised before applying this Qfix):
This Qfix can be installed in the following steps:
Users with further questions can contact QNAP Technical Support at: http://helpdesk.qnap.com |