Linux "Ghost" (glibc) Vulnerability (January 2015)

From ECE Information Technology Services
Revision as of 16:16, 28 January 2015 by Mberdan (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigationJump to search

A serious vulnerability, termed “Ghost”, has been identified in some versions of the GNU C Library (glibc), triggered by gethostbyname functions. The vulnerability affects unpatched versions of popular Linux distributions, such as Red Hat, Debian, SUSE, and Ubuntu.

ECE "managed" Linux workstations will be patched via the department's Linux configuration management service.

If you operate an un-managed Linux workstation, please ensure you patch your Linux OS using your distribution's package management tools as soon as possible.

More information may be found at http://it.ubc.ca/linux-ghost-vulnerability