[Bug 1546309] Re: dns vulneravility
Tyler Hicks
tyhicks at canonical.com
Tue Feb 16 21:12:56 UTC 2016
Hello - Thanks for the report. We're aware of the issue and security
updates should be released soon.
** Information type changed from Private Security to Public Security
** Changed in: glibc (Ubuntu)
Importance: Undecided => High
** Changed in: glibc (Ubuntu)
Status: New => In Progress
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to glibc in Ubuntu.
https://bugs.launchpad.net/bugs/1546309
Title:
dns vulneravility
Status in glibc package in Ubuntu:
In Progress
Bug description:
Has someone seen this? https://sourceware.org/ml/libc-
alpha/2016-02/msg00416.html
An attacker could create a specially crafted DNS response which could
cause libresolv to crash or, potentially, execute code with the
permissions of the user running the library.
Best,
Dario
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/glibc/+bug/1546309/+subscriptions
More information about the foundations-bugs
mailing list