Updating from bash
The vulnerability pertains to Bash, which is a widely used Unix shell.
This vulnerability affects all Linux distributions and allows remote execution of commands using environment variables.
On the Windows console and command-line side, Microsoft also made a number of improvements with Creators Update, Turner said."One of the key drivers for the Console overhaul was the need to enable the Console to render the output of Linux command-line tools & applications running on WSL.
Shellshock, or Bashdoor, is a vulnerability that was discovered on September 12th, 2014 and embargoed until September 24th when it was assigned the CVE identifier CVE-2014-6271.
And the updated WSL/Console features in Windows 10 Creators Update, which Microsoft began rolling out on April 11, reflect this, he said.
Microsoft worked with Canonical, the creators of Ubuntu Linux, to create WSL, a feature which debuted as part of Windows 10 Anniversary Update.
To check for the vulnerability, run the following in Bash: In addition to the other two, another bug was found related to the same code issues previously identified in Bash.
WSL requires fewer resources (CPU, memory, and storage) than a full virtual machine.Using Bash, you can run command-line Linux tools and apps.