Forums

Subscribe via email Subscribe via email
Subscribe via rss
Guest
or Ask a Question
Add a reply View Replies (3) →
Chris Fournier
Chris Fournier
Offline

"The GHOST vulnerability" - gethostby­name()

Resolved
0 votes
I saw this release today, and wasn't sure if we are affected or not. I thought it would be good to bring it up as I saw a few references to glibc relating to COS.

The GHOST vulnerability - what you need to know
In ClearOS Development and Test Releases
Thursday, January 29 2015, 03:47 PM
Subscribe via email
Share this post:
Responses (3)

  • Accepted Answer

    Nick Howitt
    Nick Howitt
    Offline
    Thursday, January 29 2015, 05:22 PM - #Permalink
    Resolved
    0 votes
    There is a patch going through the system at the moment. My mirrors (ftp.nluug.nl) have been updated so a "yum update" fixes the issue.
    The reply is currently minimized Show

  • Accepted Answer

    Chris Fournier
    Chris Fournier
    Offline
    Thursday, January 29 2015, 05:42 PM - #Permalink
    Resolved
    0 votes
    Oh awesome. That was quick. I assume that would be this update that just installed? glibc-common-2.12-1.149.el6_6.5.i686
    And this one... glibc-2.12-1.149.el6_6.5.i686
    The reply is currently minimized Show

  • Accepted Answer

    Nick Howitt
    Nick Howitt
    Offline
    Thursday, January 29 2015, 06:09 PM - #Permalink
    Resolved
    0 votes
    For me:
    Jan 29 17:16:22 Updated: glibc-2.12-1.149.el6_6.5.x86_64
    
Jan 29 17:16:31 Updated: glibc-common-2.12-1.149.el6_6.5.x86_64
    
Jan 29 17:16:33 Updated: glibc-headers-2.12-1.149.el6_6.5.x86_64
    
Jan 29 17:16:35 Updated: 1:app-base-core-1.6.4-1.v6.noarch
    
Jan 29 17:16:36 Updated: 1:app-base-1.6.4-1.v6.noarch
    
Jan 29 17:16:37 Updated: glibc-devel-2.12-1.149.el6_6.5.x86_64
    
Jan 29 17:16:38 Updated: nscd-2.12-1.149.el6_6.5.x86_64
    Note that all but the app-* packages are in clearos-core which means most people will not have glibc installed.
    The reply is currently minimized Show
Your Reply