Recent reports revealed that novel dumps of Shellshock patches were released this Friday night in the hottest progress to trample out the Bash shell security susceptibility that has the potential to blot millions of Linux, UNIX and Mac OS X machines.
A blog post written by Red Hat stated that, the risk from Shellshock was diminishing now as the patches had been released for most bug-affected operating systems. The post comes after Apple stated, “Most of the operating system X users are not at risk” from the vuln.
Moreover, Apple added that, Fanbois, running advanced blend of Unix on the Mac OS X were exposed to Shellshock. As per the reports, it was involved in making a software update for those users on Friday.
In the meanwhile, hackers were also working to hack the Shellshock security flaw, which enable anyone to hijack the machines, similar to the tech outfits around the world knotted to squish the 22-year old Bash bug.
Recently, The Red Hat told that, we are issuing the new patches for the bot, later than its first session of fixes confirmed to be incomplete.
Huzaifa Sidhpurwala (company’s security engineer) told, “The actual fault in Bash was named as CVE-2014-6271. Right after the flaw went public, one of our researchers discovered another issue, which was not obstruct by the first fix and this was named as CVE-2014-7169.”
It is believed that there is a possibility that some other issues will be discovered in the upcoming future even if they are blocked by the existing patches.
An official revealed that, the time when the second issue with Bash was discovered, right after the first one went public, we got an idea that something is wrong. Right after the incident, we promptly issued the patches for our customers by following the duct-tape approach. To apply multiple security updates at a time is really hard!
As the issue naming CVE-2014-7169 went public, we were having loads of confusion concerning how to address the issue.
Sidhpurwala stated that, “The flaws in the Bash were remained undetected for a long time, as they were in a murky feature that was hardly used.”