These functions convert a hostname to an IPv4 addresses and were commonly used across most networking software. This vulnerability mainly affected gethostbyname2() and gethostbyname() functions in glibc. With the GHOST vulnerability, an attacker can execute any code they want by leveraging user level permissions. GHOST vulnerability is a critical bug that affected versions of glibc that were commonly being used in 2015.
It is used within all major Linux distributions. This guide will tell you how to safely upgrade your Linux distributions and secure your Linode against the GHOST vulnerability.įor reference, glibc is a full implementation of the C and C++ libraries and was developed by the GNU Project. This vulnerability affects all Linux distributions running versions of glibc older than 2.18, and exploits a buffer overflow in the _nss_hostname_digits_dots() function. GHOST is a vulnerability that was announced on January 27th 2015, which affects the glibc library on Linux systems.
0 kommentar(er)
