Apple today released OS X bash update 1.0 for OS X Mavericks to fix a vulnerability in the bash UNIX shell.
The security flaw, known in the media as "Shellshock," was discovered last week. Uncovered by security researchers, the exploit in the bash command shell in OS X and Linux could be used to deploy malicious code.
According to an Apple spokesperson, most OS X users were not at risk form the bash vulnerabilities, but the company promised to work quickly to provide an update.
Bash, a UNIX command shell and language included in OS X, has a weakness that could allow unauthorized users to remotely gain control of vulnerable systems. With OS X, systems are safe by default and not exposed to remote exploits of bash unless users configure advanced UNIX services. We are working to quickly provide a software update for our advanced UNIX users.
Along with the fix for OS X Mavericks, Apple has released updates for both OS X Lion and OS X Mountain Lion. There is no Yosemite download available as of yet, but Apple may be planning to issue a fix in the near future. The three updates are available via Apple's support pages and should be available via the Software Update tool soon.
Top Rated Comments
That's like saying that the door of my house is not safe, because someone could climb through my windows and open it from inside.
If you were stupid enough to have downloaded malware, that malware doesn't need to exploit any bugs in bash. It can just use bash.
!!@£!@$@%£^£&**(!!
$ bash --version
GNU bash, version 3.2.51(1)-release (x86_64-apple-darwin13)
After:
$ bash --version
GNU bash, version 3.2.53(1)-release (x86_64-apple-darwin13)
I wonder if Yosemite is already fixed.
Hopefully, this update won't delete documents and kill your modem...