Linux "Ghost" Vulnerability (January 2015)

From ECE Information Technology Services
Revision as of 15:44, 28 January 2015 by Mberdan (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigationJump to search

A serious vulnerability, termed “Ghost”, has been identified in some versions of the GNU C Library (glibc), triggered by gethostbyname functions. The vulnerability affects unpatched versions of the popular Linux distributions, such as Red Hat, Debian, SUSE, and Ubuntu.

ECE "managed" Linux workstations will be patched via the department's Linux configuration management service.

If you operate an un-managed Linux workstation, please ensure you patch your Linux OS using your distributions package management tools as soon as possible.

More information may be found at http://it.ubc.ca/linux-ghost-vulnerability