REN-ISAC Alert re: Critical vulnerability in Bash, nicknamed “shellshock"

[Joanna Grama <jgrama () EDUCAUSE EDU>]

Good afternoon,

The REN-ISAC (Research and Education Networking Information Sharing and Analysis Center) has issued a public alert 
about  a critical vulnerability in Bash, nicknamed “shellshock”.  EDUCAUSE is sharing this alert to help inform the 
higher education community about this threat.

You can read the REN-ISAC alert at: http://www.ren-isac.net/alerts.html. A PDF of this alert is also attached to this 
email.
Institutions are encouraged to consult with their information security and/or incident response staff for additional 
information on how this vulnerability may impact the institution.

The REN-ISAC mission is to aid and promote cybersecurity operational protection and response within the research and 
higher education (R&E) communities. The mission is conducted through private information sharing within a community of 
trusted representatives at member organizations, and as a computer security incident response team (CSIRT) supporting 
the R&E community at-large. REN-ISAC serves as R&E's trusted partner in commercial, governmental and private 
information sharing relationships, in the formal U.S. ISAC community, and for served networks.   Learn more about the 
REN-ISAC at http://www.ren-isac.net

Kind regards,
Joanna

Joanna Grama, JD, CISSP
Director of DRA Operations, IT GRC and Cybersecurity Programs
Data, Research, and Analytics
EDUCAUSE
Uncommon Thinking for the Common Good
282 Century Place, Suite 5000, Louisville, CO 80027
direct: 720.406.6769 | main: 303.449.4430 | fax: 303.440.0461 | educause.edu<http://www.educause.edu/>

Attachment: REN-ISAC Shell Shock Advisory.pdf
Description: REN-ISAC Shell Shock Advisory.pdf