The Bash (Shellshock) Vulnerability & ArcGIS

A new security vulnerability has been discovered that may concern Esri UK customers who use Linux based operating systems.

This vulnerability affects the standard Bash login shell that is broadly deployed and used on Linux hosts.

Esri UK have taken all necessary steps to patch their systems that may potentially be affected by the vulnerability, including Esri UK Online Data Services & hosted infrastructure services.

Please be aware that ArcGIS for Server, ArcGIS Online and Portal for ArcGIS application interfaces are not affected by this issue. However, if you have deployed Esri products on Linux, we strongly recommend applying your Linux vendor’s security patches immediately to minimize the attack surface of your systems.

For further information and updates, please refer to the Esri blog site.