Page 1 of 1

GHOST security vulnerability

Posted: Wed Jan 28, 2015 8:34
by Skyr
Hi all,

are there any updated packages for glibc not vulnerable to GHOST? My glibc-2.17 is reported vulnerable, and this is a rather serious issue:

http://www.openwall.com/lists/oss-security/2015/01/27/9
http://ma.ttias.be/critical-glibc-updat ... ame-calls/

According to http://forums.gentoo.org/viewtopic-t-10 ... ghost.html, glibc 2.18 and later should not be affected.

Re: GHOST security vulnerability

Posted: Wed Jan 28, 2015 10:04
by joost
We are obviously aware of this. A fix (updated glibc package) is in the works.

Re: GHOST security vulnerability

Posted: Wed Jan 28, 2015 10:39
by Skyr
Sorry for my impatience :-)