• Update to patchlevel 4.3.29.
  
  This addresses the local crash from CVE-2014-6277. Note that the fixes applied in 4.3.25_2 (and upstream 4.3.27) already made this non-exploitable remotely.
  
  This makes 'bashcheck' [1] fully green now. It had a soft warning before for CVE-2014-6277.

[1] https://github.com/hannob/bashcheck