From: | James <wireless@×××××××××××.com> | ||
---|---|---|---|
To: | gentoo-user@l.g.o | ||
Subject: | [gentoo-user] Re: Ghost cyber threat | ||
Date: | Wed, 28 Jan 2015 23:42:20 | ||
Message-Id: | loom.20150128T155913-621@post.gmane.org | ||
In Reply to: | Re: [gentoo-user] Ghost cyber threat by Philip Webb |
1 | Philip Webb <purslow <at> ca.inter.net> writes: |
2 | |
3 | > |
4 | > 150127 Joseph wrote: |
5 | > > Does anybody know more about this "security flaw |
6 | > > in the open-source Linux GNU C Library" : |
7 | http://www.theglobeandmail.com/technology/linux-makers-release-patch-to-thwart-new-ghost-cyber-threat/article22662060/?cmpid=rss1 |
8 | > |
9 | > Acc to this, it was patched 2013 & today threatens only long-term systems : |
10 | > |
11 | > |
12 | http://threatpost.com/ghost-glibc-remote-code-execution-vulnerability-affects-all-linux-systems/110679 |
13 | > |
14 | > I'm running 2.19-r1 , installed 140802 ; vulnerable are < 2.18 . |
15 | > |
16 | > Linux systems are at risk only when admins don't keep versions upto-date. |
17 | |
18 | |
19 | Maybe it's time to looking into some of the work the gentoo hardened devs |
20 | have going on: |
21 | |
22 | http://wiki.gentoo.org/wiki/Project:Hardened_musl |
23 | |
24 | |
25 | hth, |
26 | James |
Subject | Author |
---|---|
Re: [gentoo-user] Re: Ghost cyber threat | Andrew Savchenko <bircoph@g.o> |