The vulnerability is known as Shellshock or Bash Bug. Due to the seriousness of this vulnerability, it is highly recommended that you update Bash as soon as possible.
Here are the steps you have to take:
1. Check if your VPS is vulnerable by running: env 'VAR=() ; echo Bash is vulnerable!' 'FUNCTION()=() ; echo Bash is vulnerable!' bash -c "echo Bash Tested Ok"
If the output is: Bash is vulnerable! then your VPS is vulnerable and you should proceed to step 2. Bash Test; then you can ignore this email.
2. Here's how you fix the Bash vulnerability: Debian/Ubuntu users: - for currently supported versions run the following command: sudo apt-get update && sudo apt-get install --only-upgrade bash for End Of Life releases backup your important data and run the following command: do-release-upgrade for Debian 6 users additional steps must be taken before the update. You can find them here https://wiki.debian.org/LTS/Using CentOS/Red Hat/Fedora users: - run the following command: yum update bash
Wednesday, October 1, 2014