Date: Tue, 27 Jan 2015 17:04:58 +0100 From: Hanno Böck <hanno@...eck.de> To: oss-security@...ts.openwall.com Subject: GHOST gethostbyname() heap overflow in glibc (CVE-2015-0235) There seems to be news out about a heap overflow in glibc's gethostbyname() function. The original is french which I don't understand, hackernews links google translate: https://translate.google.com/translate?hl=en&sl=fr&tl=en&u=http%3A%2F%2Fwww.frsag.org%2Fpipermail%2Ffrsag%2F2015-January%2F005722.html This is redhat's report: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-0235 Origin seems to be a report from qualys. -- Hanno Böck http://hboeck.de/ mail/jabber: hanno@...eck.de GPG: BBB51E42 [ CONTENT OF TYPE application/pgp-signature SKIPPED ]
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ