With everybody’s eyes on bash vulnerabilities, two new problems have been found . These problems have been assigned CVE-2014-6277 and CVE-2014-6278. These issues are unrelated to the environment variable code injection of shellshock, but could also lead to code execution.
I hope you are keeping good notes as to what systems use bash and how as you are patching. Looks like bash will keep us busy for a bit.
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.