• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

Update your BASH


Well-known member
Not out of the woods yet!


Urgent Action Required
We have both been made aware of some malware being spread via this vulnerability and we have seen another variant our self on our own IDS.

Please ensure you are upgraded or have taken other measures to prevent exploitation.

Also be aware that vendors such as redhat are working on a potential patch for the incomplete patch so you may need to upgrade twice.


Evidence of active exploitation:


Well-known member
The new one isn't as bad as the original one apparently, so they still recommend applying the initial fix, and then updating again once they fix the second one.


Well-known member
It looks like this particular design flaw*, is one that will keep giving for a few more rounds of bugfixing.

*Bash is doing crazy stuff to unsanitized environmental variables.