[USN-5380-1] Bash vulnerability

========================================================================== Ubuntu Security Notice USN-5380-1 April 20, 2022
bash vulnerability ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
– Ubuntu 20.04 LTS – Ubuntu 18.04 LTS – Ubuntu 16.04 ESM – Ubuntu 14.04 ESM
Bash could be used to escalate privileges.
Software Description: – bash: GNU Bourne Again SHell
It was discovered that Bash did not properly drop privileges when the binary had the setuid bit enabled. An attacker could possibly use this issue to escalate privileges.
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 20.04 LTS:   bash                            5.0-6ubuntu1.2
Ubuntu 18.04 LTS:   bash                            4.4.18-2ubuntu1.3
Ubuntu 16.04 ESM:   bash                            4.3-14ubuntu1.4+esm1
Ubuntu 14.04 ESM:   bash                            4.3-7ubuntu1.8+esm2
In general, a standard system update will make all the necessary changes.
References:   ubuntu.com/security/notices/USN-5380-1   CVE-2019-18276
Package Information:   launchpad.net/ubuntu/+source/bash/5.0-6ubuntu1.2   launchpad.net/ubuntu/+source/bash/4.4.18-2ubuntu1.3