На информационном ресурсе применяются рекомендательные технологии (информационные технологии предоставления информации на основе сбора, систематизации и анализа сведений, относящихся к предпочтениям пользователей сети "Интернет", находящихся на территории Российской Федерации)

Geek Portal

61 подписчик

A critical security hole Linux is revealed

 

Image source

 

Cloud Security company Qualys found a large security hole, ghost (CVE-2015-0235), in the library of Linux GNU C (glibc). This vulnerability allows hackers to remotely take control of the system, not even knowing that the system IDs or passwords.

They warned of the major distributors of Linux security hole, fast, and most of them are now released patches for it. Josh Bressers, team manager of security products Red Hat said in an interview that, "Red Hat got word this about a week ago. Updates fix GHOST on Red Hat Enterprise Linux (RHEL) 5, 6 and 7 are now available via Red Hat Network".

 

Views:

 

Securitybreach

This is a vulnerability found that affects older versions of distros except for Debian (because it uses an older version of glibc) and they are working on a patch. Another reason to use an up to date distro.. 

Ayceman

The fixed version has been in the Arch and Manjaro stable repos for a while, so those distributions aren't affected. 

Justasysadmin

Oh, patches are coming soon for most vendors? That's helpful. Should I use prayer or cut-off power as a workaround? Shame on Qualys for not managing this disclosure in a responsible manner. 

 

Картина дня

наверх