There is a remote code execution vulnerability in Bash right now (CVE-2014-6271, cited in Schneier). I know that some of my brothers and sisters here are GNU/Linux users, so be careful. It's likely that your distribution has already fixed this. Use your package manager to address this issue by upgrading normally. To find out if you are vulnerable, from bash, type in: Code: env x='() { :;}; echo vulnerable' bash -c "echo this is a test" and the output will be Code: vulnerable this is a test For a fixed version of bash, the output should be Code: bash: warning: x: ignoring function definition attempt bash: error importing function definition for `x' this is a test
There's also a possible patch for Mac OS: Every Mac Is Vulnerable to the Shellshock Bash Exploit: Here's How to Patch OS X « Mac Tips