Regarding the "Shellshock" Bash Security Update

September 26, 2014 1.3k views

Thanks for the update. Please let me know if these threats are serious and could cause any damages to the site. Please let me know if there is anything that I should be doing.

Thanks a lot!

2 Answers


In most cases, you will simply need to apply updates as normal. See this tutorial for all the details:

On September 24, 2014, a GNU Bash vulnerability, referred to as Shellshock or the "Bash Bug", was disclosed. In short, the vulnerability allows remote attackers to execute arbitrary code given certain conditions, by passing strings of code following environment variable...

Seems modern web server (not running cgi) is not affected

Simply apply the current updates & keep monitor upcoming security news is what we can do now.

Have another answer? Share your knowledge.