Red Hat found another flaw in BASH that has been assigned CVE-2014-7169.  This is in addition to CVE-2014-6271 in the previous Blog entry.  CVE-2014-7169 affects Red Hat 4, 5, 6, and 7.  Red Hat released the update today 9/26/2014 https://access.redhat.com/security/cve/CVE-2014-7169​

NIST
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-7169
Debian
https://www.debian.org/security/2014/dsa-3035
Ubuntu
http://www.ubuntu.com/usn/usn-2363-2/
Oracle Linux
http://www.oracle.com/technetwork/topics/security/alert-cve-2014-7169-2303276.html

Cygwin for Windows – update released 10/8/2014
https://cygwin.com/ml/cygwin-announce/2014-10/msg00004.html
https://cygwin.com/ml/cygwin-announce/2014-10/msg00015.html
http://sourceware.mirrors.tds.net/pub/sourceware.org/cygwin/x86_64/release/bash/

Apple has agreed that both CVE-2014-6271 and CVE-2014-7169 affect the Mac OS and they are working on creating a quick update for its advanced UNIX users.
http://www.macworld.com/article/2687826/apple-says-most-mac-users-are-safe-from-shellshock-bash-bug-promises-quick-fix.html

Mac OS secure with Security Update 2014-005 released 10/17/2014 for Mac OS 10.8 and 10.9, 10.10 should already be secured.