pGet in touch with us:  +44 (0) 1252 757181

GHOST - Another Major Linux Vulnerability

Wednesday, February 04, 2015
Steve Atkinson
Numerous versions of Linux are at risk from a "GHOST" vulnerability that an attacker could exploit - remotely or locally - to bypass credential checks and seize control of a system, warn researchers at cloud security and vulnerability scanning vendor Qualys. The flaw exists in the GNU C Library, a.k.a. "glibc."



The vulnerability in the glibc library, which has been assigned CVE-2015-0235 and is commonly referred to as ‘GHOST’ affects All versions of glibc shipped. Patched versions of Linux have been released by most vendors and users / administrators are being advised to update to latest versions.

What flaw will be disclosed next and how many more vulnerabilities are lurking in open source Linux components?



 

Archive