CVE-2014-6271 “Shell Shock” Bash Exploit
Please note that the RPM’s for the FreePBX Distro have been updated and contain the released patch for this announcement. Please update bash as soon as possible.
yum update bash
This recommendation is made as a precaution. There has been no reported compromises related to this issue on FreePBX systems. This has been around a long time and was only recently exposed. Remember to follow best security practices and do not expose your server to the public network if there is no need to. Lock down exposures to specific IP addresses whenever possible. Short of cutting all the wires (including power), and possibly explosives, there is no way to ensure complete security. Please use common sense wherever possible.