I'm surprised there is no discussion here regarding the Bash vulnerability. I've confirmed that my 1.8.3 installation is vulnerable so I'm hoping we'll see a fix very soon. I've stopped all my services for now but I'm not sure that makes my system safe? Anyone have comments or suggestions? Any idea when we might see an update?
BTW - This is how I tested ...
Open Cygwin shell and type: env 'x=() { :;}; echo vulnerable' 'BASH_FUNC_x()=() { :;}; echo vulnerable' bash -c "echo test"