stormi |
10-08-2014 03:57 AM |
If you have installed the recent bash updates, your system is not vulnerable anymore. There was a patch that fixed the issue once and for all, and all those "test" scripts meant to tell if you're vulnerable or not are now obsolete, because they don't demonstrate a vulnerability anymore, they just demonstrate bugs in the parser... But those bugs are not exploitable anymore.
The upcoming update will fix remaining bugs, but it's not a security update (although it has been assigned a CVE because it would be a security issue for those who didn't apply the "make the bug not exploitable" patch).
More information in the bug report linked by Jim above.
|