Apple Releases OS X Bash Update to Fix 'Shellshock' Security Flaw in Mavericks, Mountain Lion, and Lion - MacRumors
Skip to Content

Apple Releases OS X Bash Update to Fix 'Shellshock' Security Flaw in Mavericks, Mountain Lion, and Lion

by

Apple today released OS X bash update 1.0 for OS X Mavericks to fix a vulnerability in the bash UNIX shell.

The security flaw, known in the media as "Shellshock," was discovered last week. Uncovered by security researchers, the exploit in the bash command shell in OS X and Linux could be used to deploy malicious code.

bashupdate
According to an Apple spokesperson, most OS X users were not at risk form the bash vulnerabilities, but the company promised to work quickly to provide an update.

Bash, a UNIX command shell and language included in OS X, has a weakness that could allow unauthorized users to remotely gain control of vulnerable systems. With OS X, systems are safe by default and not exposed to remote exploits of bash unless users configure advanced UNIX services. We are working to quickly provide a software update for our advanced UNIX users.

Along with the fix for OS X Mavericks, Apple has released updates for both OS X Lion and OS X Mountain Lion. There is no Yosemite download available as of yet, but Apple may be planning to issue a fix in the near future. The three updates are available via Apple's support pages and should be available via the Software Update tool soon.

Related Forum: OS X Mavericks

Popular Stories

iCloud iPhone 17 Pro

iPhone Users Who Pay for iCloud Storage Get Two New Perks on iOS 27

Tuesday June 9, 2026 11:29 am PDT by
If you pay for extra iCloud storage on your iPhone, beyond the 5GB included for free, you might receive two more perks on iOS 27 at no additional cost. First, Apple said there will be daily usage limits for some of the new and enhanced Apple Intelligence features on iOS 27, including image generation. However, the company noted that "increased access" is available with "most" iCloud+ storage ...
Read Full Article
CarPlay Siri AI

Apple Announces New CarPlay Features on iOS 27, Including Video Apps

Monday June 8, 2026 4:17 pm PDT by
Back at WWDC 2025, Apple revealed that it was planning to allow CarPlay users to watch video via AirPlay in their vehicles while they are not driving, but we did not hear many specific details about this functionality until now. In a WWDC 2026 video aimed at developers, Apple said the CarPlay video feature is available in new vehicles that support it. When playing a video in an iPhone app...
Read Full Article68 comments
Apple Says iOS 27 Adds These 12 New Features to Your iPhone Feature

Apple Says iOS 27 Adds These 12 New Features to Your iPhone

Tuesday June 9, 2026 9:47 am PDT by
iOS 27's key new feature is a more intelligent and personal version of Siri, but the changes go well beyond that. In a press release today, Apple outlined additional enhancements coming across Apple Maps, Find My, Apple Wallet, Apple Music, and more. Apple Maps has gained an enhanced Flyover experience powered by AI, enabling you to view aerial imagery in "stunning detail" for select cities. ...
Read Full Article29 comments

Top Rated Comments

A
andyyardley
153 months ago
Will this update break my wifi? Or delete all my files?
Score: 10 Votes (Like | Disagree)
C
chrisgeleven
153 months ago
Not seeing it in the App Store yet.
Score: 9 Votes (Like | Disagree)
gnasher729 Avatar
gnasher729
153 months ago
It's a very highly published and potently exploitable bug. You don't need to be running a server for it to be exploited.

It could, for example, be exploited by malware that you download. The bash patch should be applied by everyone.

That's like saying that the door of my house is not safe, because someone could climb through my windows and open it from inside.

If you were stupid enough to have downloaded malware, that malware doesn't need to exploit any bugs in bash. It can just use bash.
Score: 8 Votes (Like | Disagree)
S
sconnor99
153 months ago
Careful guys. This update disables your MacBook's keyboard.


!!@£!@$@%£^£&**(!!
Score: 8 Votes (Like | Disagree)
Xenomorph Avatar
Xenomorph
153 months ago
Before:


$ bash --version
GNU bash, version 3.2.51(1)-release (x86_64-apple-darwin13)


After:


$ bash --version
GNU bash, version 3.2.53(1)-release (x86_64-apple-darwin13)
Score: 8 Votes (Like | Disagree)
jayducharme Avatar
jayducharme
153 months ago
sucks for yosemite users.

I wonder if Yosemite is already fixed.

Hopefully, this update won't delete documents and kill your modem...
Score: 8 Votes (Like | Disagree)
Read All Comments