This is from the Mint forum, in a thread called "BASH vulnerability a.k.a. 'Shellshock'".
Summary of need to know information:
Linux Mint 13 has been fully patched: just install level 3 updates from Update Manager to get bash update 4.2-2ubuntu2.3 (changelog).
This fixes both CVE 2014-6271 and CVE-2014-7169.
Linux Mint 17 has been fully patched: just install level 3 updates from Update Manager to get bash update 4.3-7ubuntu1.3 (changelog).
This fixes both CVE 2014-6271 and CVE-2014-7169.
Other versions of Linux Mint are obsolete and do not receive security updates!!! Either patch bash manually, or install Linux Mint 13 or 17. More information:
http://forums.linuxmint.com/viewtopic.php?t=173378
LMDE is not yet patched, but you can get a patched version of bash from Debian sid. See this post:
http://forums.linuxmint.com/viewtopic.p ... 60#p928236
The bash vulnerability primarily affects users running server software (e.g., Apache web server) that is reachable from the Internet. As home users not running any server software that is reachable from the Internet, this bash vulnerability doesn't immediately affect you.
http://forums.linuxmint.com/viewtopic.php?f=42&t=179002
Going to install Mint17 on the CF-29MK4 today.