<p dir="ltr">FYI those patches are incomplete. Check the red hat vuln entry for a temporary fix using LD_preload until the patch is updated. </p>
<div class="gmail_quote">On 25 Sep 2014 13:11, "gordon dunlop" <<a href="mailto:zubenel@fedoraproject.org">zubenel@fedoraproject.org</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">For those that run servers and haven't heard the latest (announced yesterday), a critical security vulnerability was found in the Bash shell that affects all *nix systems. <div><br></div><div><a href="http://www.zdnet.com/unixlinux-bash-critical-security-hole-uncovered-7000034021/" target="_blank">http://www.zdnet.com/unixlinux-bash-critical-security-hole-uncovered-7000034021/</a></div><div><br></div><div><a href="http://arstechnica.com/security/2014/09/bug-in-bash-shell-creates-big-security-hole-on-anything-with-nix-in-it/" target="_blank">http://arstechnica.com/security/2014/09/bug-in-bash-shell-creates-big-security-hole-on-anything-with-nix-in-it/</a></div><div><br></div><div>You will find patches have now been provided for Red Hat, CentOS, Fedora, Debian & Ubuntu supported systems (I don't know about the rest) and are in their update repositories. I have updated all my systems.<br><br clear="all"><div>-- <br></div><div dir="ltr"><div>Gordon</div><div><a href="http://www.zubenel.org.uk" target="_blank">www.zubenel.org.uk</a><br></div></div></div></div>
<br>_______________________________________________<br>
dundee GNU/Linux Users Group mailing list<br>
<a href="mailto:dundee@mailman.lug.org.uk">dundee@mailman.lug.org.uk</a> <a href="http://dundee.lug.org.uk" target="_blank">http://dundee.lug.org.uk</a><br>
<a href="https://mailman.lug.org.uk/mailman/listinfo/dundee" target="_blank">https://mailman.lug.org.uk/mailman/listinfo/dundee</a><br>
Chat on IRC, #tlug on <a href="http://irc.lug.org.uk" target="_blank">irc.lug.org.uk</a><br></blockquote></div>