I'm not trying to defend the existence of the bug - it's a critical security flaw that needs to be fixed ASAP.

However, if you have updated or want to update and keep your system secure, the fix is very simple. Just make sure you remember the password you enter for root (the bug exists because the root user initially does not actually have a password).