CVE-2014-7169: Bash Shellshock incomplete fix – command injection via function import in non-POSIX mode

CVE-2014-7169 — bash secondary Shellshock parser-state leak via env function import

CVE-2019-18276: Bash restricted-bypass via enable -f loading shared objects

CVE-2019-18276: bash disable_priv_mode leaves saved-UID intact, escalation via enable -f

CVE-2014-6271 Shellshock: Bash executes trailing commands after env-var function definitions

CVE-2014-6271 Shellshock: bash parses past function boundary in env var imports

CVE-2019-9924: bash rbash restricted-bypass via BASH_CMDS / assign_hashcmd

CVE-2019-9924: bash rbash escape via fall-back script interpretation and BASH_CMDS

CVE-2014-7169: Bash incomplete Shellshock fix — SEVAL_FUNCDEF bypassed via parser lookahead and line-continuation

CVE-2014-7169 — Bash Shellshock secondary injection via function-name parser interpolation

CVE-2019-18276: Bash restricted-bypass via enable builtin loading shared objects during startup

CVE-2019-18276: bash disable_priv_mode leaks saved UID, exploitable via 'enable -f'

CVE-2014-6271: Shellshock - Function definition injection via environment variables

CVE-2014-6271 Shellshock: Bash executes trailing commands after function definition imported from env vars

CVE-2014-6271 Shellshock — bash function-import parser boundary bug

CVE-2014-7169 — incomplete Shellshock fix in bash 4.3-p25 (variables.c initialize_shell_variables -> parse_and_execute)

CVE-2014-7169: Bash Shellshock incomplete fix — command injection via ENV var name metacharacters

CVE-2014-7169 Bash Shellshock Secondary Injection via Function Definition Names

CVE-2014-6271 Shellshock: bash parse_and_execute consumes trailing commands after function-definition env import

CVE-2014-6271 (Shellshock) - Command Injection via Function Definition Environment Variables in Bash 4.3