On 25 Sep 2014 01:44, "Chris Adams" <linux(a)cmadams.net> wrote:
As far as I know, that would require some other security vulnerability
first (at which point bash security is moot).
--
Heads up people the first patch was incomplete...
This is now being tracked under:
https://access.redhat.com/security/cve/CVE-2014-7169
The original RH article has been updated with a new workaround until an
updated patch gets deployed to systems.