Ghost gethost attack
Brandon Vincent
Brandon.Vincent at asu.edu
Sat Mar 28 23:13:26 UTC 2015
On Sat, Mar 28, 2015 at 2:39 PM, John R. Sowden
<jsowden at americansentry.net> wrote:
> Version: 2.17-93ubuntu4
>From the output of that command it looks like your system is on 13.10,
which reached EOL on July 17, 2014.
GHOST impacts glibc versions before 2.18, so your system is vulnerable
to the buffer overflow attack.
While anything which uses the gethostbyname() function is potentially
exploitable, researchers have only found issues with Exim. If you are
not using Exim, you should be okay.
I would still update the system as soon as it is possible.
Brandon Vincent
More information about the ubuntu-users
mailing list