On 10/09/2014 12:26 PM, Lars Hecking wrote: > > According to the vulnerability test script from shellshocker.net, the latest > bash versions on CentOS5 and CentOS6, 3.2-33.el5_11.4 and 4.1.2-15.el6_5.2, > resp., are still vulnerable to CVE-2014-6277. In fact, on CentOS6, abrtd will > send you a nice report about it. Does anyone know if upstream is working on a > fix? > https://bugzilla.redhat.com/show_bug.cgi?id=1147189 has conversation and details that you might find interesting. -- Karanbir Singh +44-207-0999389 | http://www.karan.org/ | twitter.com/kbsingh GnuPG Key : http://www.karan.org/publickey.asc