i received the following notification from AWS... when i run yum update i'm up to date..... do you know anything about this?
Thank you for subscribing to Virtualmin GPL stack powered by SAIN3.
We are writing to notify you that Dongguan SainStore e-Commerce Co., Ltd has released a new version of Virtualmin GPL stack powered by SAIN3 available at: https://aws.amazon.com/marketplace/seller-profile/ref=srh_res_product_ve.... This version addresses a potential security vulnerability involving Bash (aka “Shellshock”).
As a current subscriber your subscription to Virtualmin GPL stack powered by SAIN3 is unaffected; running instances will not be affected and you may continue to create new instances. However, it is HIGHLY recommended that you take actions to upgrade to the new version (2) as soon as possible.
For information on how to address this vulnerability issue on any running instances, please refer to:
AWS Security Bulletin page: https://aws.amazon.com/security/security-bulletins/
Amazon Linux AMI: https://aws.amazon.com/security/security-bulletins/CVE_2014_6271_advisory/
Ubuntu Server: http://www.ubuntu.com/usn/usn-2363-2/
Red Hat Enterprise Linux: https://rhn.redhat.com/errata/RHSA-2014-1306.html
SuSE Linux Enterprise Server: http://support.novell.com/security/cve/CVE-2014-7169.html
If you have questions about your software please contact Dongguan SainStore e-Commerce Co., Ltd directly at: http://www.sain3.com.
Comments
Submitted by andreychek on Wed, 10/22/2014 - 14:36 Comment #1
Howdy -- I'm unfortunately not familiar with what that might be, it doesn't appear to be a message that would be generated by Virtualmin.
There does appear to be a company named "SAIN3", is it possible that you had signed up with them at some point, and they're just sending out a standard newsletter to all their users/customers?
Submitted by nhsitehost on Wed, 10/22/2014 - 14:46 Pro Licensee Comment #2
figures.. SPAM.... thanks..
Submitted by nhsitehost on Wed, 11/05/2014 - 13:00 Pro Licensee Comment #3