CVE-2014-6271: remote code execution through bash

[Himanshu anand]

Update your server

MITRE is currently using CVE-2014-7169 to track the report of the
incomplete patch, i.e., incorrect function parsing that's present in
builds that are up-to-date with the
http://ftp.gnu.org/gnu/bash/bash-4.3-patches/bash43-025 changes. We
realize that other people may be releasing further information about
the technical details and implications later. CVE-2014-7169 expresses
the affected upstream versions as "GNU Bash through 4.3 bash43-025" --
in general, this would include distribution packages released earlier
today (2014-09-24).

Copied form http://seclists.org/oss-sec/2014/q3/685

Regards,

Himanshu Anand