Archives
Archives
| From: | James <wireless@×××××××××××.com> | ||
|---|---|---|---|
| To: | gentoo-user@l.g.o | ||
| Subject: | [gentoo-user] Re: Ghost cyber threat | ||
| Date: | Wed, 28 Jan 2015 23:42:20 | ||
| Message-Id: | loom.20150128T155913-621@post.gmane.org | ||
| In Reply to: | Re: [gentoo-user] Ghost cyber threat by Philip Webb |
||
| 1 | Philip Webb <purslow <at> ca.inter.net> writes: |
| 2 | |
| 3 | > |
| 4 | > 150127 Joseph wrote: |
| 5 | > > Does anybody know more about this "security flaw |
| 6 | > > in the open-source Linux GNU C Library" : |
| 7 | http://www.theglobeandmail.com/technology/linux-makers-release-patch-to-thwart-new-ghost-cyber-threat/article22662060/?cmpid=rss1 |
| 8 | > |
| 9 | > Acc to this, it was patched 2013 & today threatens only long-term systems : |
| 10 | > |
| 11 | > |
| 12 | http://threatpost.com/ghost-glibc-remote-code-execution-vulnerability-affects-all-linux-systems/110679 |
| 13 | > |
| 14 | > I'm running 2.19-r1 , installed 140802 ; vulnerable are < 2.18 . |
| 15 | > |
| 16 | > Linux systems are at risk only when admins don't keep versions upto-date. |
| 17 | |
| 18 | |
| 19 | Maybe it's time to looking into some of the work the gentoo hardened devs |
| 20 | have going on: |
| 21 | |
| 22 | http://wiki.gentoo.org/wiki/Project:Hardened_musl |
| 23 | |
| 24 | |
| 25 | hth, |
| 26 | James |
| Subject | Author |
|---|---|
| Re: [gentoo-user] Re: Ghost cyber threat | Andrew Savchenko <bircoph@g.o> |