Apple Releases OS X Bash Update to Fix 'Shellshock' Security Flaw in Mavericks, Mountain Lion, and Lion

Apple today released OS X bash update 1.0 for OS X Mavericks to fix a vulnerability in the bash UNIX shell.

The security flaw, known in the media as "Shellshock," was discovered last week. Uncovered by security researchers, the exploit in the bash command shell in OS X and Linux could be used to deploy malicious code.

bashupdate
According to an Apple spokesperson, most OS X users were not at risk form the bash vulnerabilities, but the company promised to work quickly to provide an update.

Bash, a UNIX command shell and language included in OS X, has a weakness that could allow unauthorized users to remotely gain control of vulnerable systems. With OS X, systems are safe by default and not exposed to remote exploits of bash unless users configure advanced UNIX services. We are working to quickly provide a software update for our advanced UNIX users.

Along with the fix for OS X Mavericks, Apple has released updates for both OS X Lion and OS X Mountain Lion. There is no Yosemite download available as of yet, but Apple may be planning to issue a fix in the near future. The three updates are available via Apple's support pages and should be available via the Software Update tool soon.

Related Forum: OS X Mavericks

Popular Stories

iPhone 16 Pro Max Generic Feature 2

5 Biggest Changes Rumored for iPhone 16 Pro Max

Tuesday May 21, 2024 7:29 am PDT by
Given Apple's rumored plan to add an all-new high-end tier to its iPhone 17 series in 2025, this could be the year for Apple to bring its boldest "Pro Max" model to the table — the kind of iPhone 16 upgrade that stands tall above its siblings, both figuratively and literally. If you have been holding out for the iPhone 16 Pro Max, here are five of the biggest changes rumored to be coming...
iOS 17

Apple Releases iOS 17.5.1 With Fix for Reappearing Photos Bug

Monday May 20, 2024 10:11 am PDT by
Apple today released iOS 17.5.1 and iPadOS 17.5.1, minor updates to the iOS 17 and iPadOS 17 operating system updates that came out last September. The 17.5.1 updates come a week after the launch of iOS 17.5 and iPadOS 17.5. iOS 17.5.1 and iPadOS 17.5.1 can be downloaded on eligible iPhones and iPads over-the-air by going to Settings > General > Software Update. According to Apple's...
maxresdefault

iPhone SE 4 With Face ID Said to Be Priced Below $500

Monday May 20, 2024 3:43 am PDT by
Apple is targeting a sub-$500 starting price for its upcoming fourth-generation iPhone SE model despite a raft of rumored upgrades coming to the more affordable device. According to leaker Revegnus on X, the U.S. launch price of the fourth-generation iPhone SE will either remain at the same $429 starting price as the current model, or will see an increase of around 10%. Either way, Apple's...
microsoft surface pro qualcomm

Microsoft Says New Surface Pro is Faster Than 15" M3 MacBook Air

Monday May 20, 2024 3:19 pm PDT by
Microsoft is going all in on AI, today introducing a series of Copilot+ PCs that have AI-focused hardware. The new Surface Pro is one of the first Copilot+ PCs, equipped with Qualcomm's Arm-based Snapdragon X Elite processor. Microsoft is already pitting the Surface Pro against Apple's M3 MacBook Air, and in marketing materials, claims that the Surface Pro has superior processing power and...
iPhone 15 Pro Cameras

iPhone 16 Pro Max to Feature New 48MP Wide and Ultra Wide Cameras

Tuesday May 21, 2024 3:36 am PDT by
Apple's iPhone 16 Pro Max will boast a bigger main camera sensor while both iPhone 16 Pro models will feature a 48-megapixel Ultra Wide camera for the first time, claims a rumor coming out of Asia. According to Weibo user OvO Baby Sauce OvO, the main camera of the iPhone 16 Pro Max will be based on an advanced custom 48-megapixel Sony IMX903 sensor. In contrast, the iPhone 16 Pro will use...

Top Rated Comments

andyyardley Avatar
126 months ago
Will this update break my wifi? Or delete all my files?
Score: 10 Votes (Like | Disagree)
chrisgeleven Avatar
126 months ago
Not seeing it in the App Store yet.
Score: 9 Votes (Like | Disagree)
gnasher729 Avatar
126 months ago
It's a very highly published and potently exploitable bug. You don't need to be running a server for it to be exploited.

It could, for example, be exploited by malware that you download. The bash patch should be applied by everyone.

That's like saying that the door of my house is not safe, because someone could climb through my windows and open it from inside.

If you were stupid enough to have downloaded malware, that malware doesn't need to exploit any bugs in bash. It can just use bash.
Score: 8 Votes (Like | Disagree)
sconnor99 Avatar
126 months ago
Careful guys. This update disables your MacBook's keyboard.


!!@£!@$@%£^£&**(!!
Score: 8 Votes (Like | Disagree)
Xenomorph Avatar
126 months ago
Before:


$ bash --version
GNU bash, version 3.2.51(1)-release (x86_64-apple-darwin13)


After:


$ bash --version
GNU bash, version 3.2.53(1)-release (x86_64-apple-darwin13)
Score: 8 Votes (Like | Disagree)
jayducharme Avatar
126 months ago
sucks for yosemite users.

I wonder if Yosemite is already fixed.

Hopefully, this update won't delete documents and kill your modem...
Score: 8 Votes (Like | Disagree)