How To Patch and Protect Linux Glibc Getaddrinfo Stack-based Buffer Overflow Zero Day Vulnerability CVE-2015-7547 and CVE-2015-5229 [ 16/Feb/2016 ] |

A stack-based critical buffer overflow was found in the way the libresolv library (glibc) performed dual A/AAAA DNS queries. A remote attacker could crash or, potentially, execute code running the library on Linux. How do I patch and protect my server or workstation against the glibc getaddrinfo on Linux operating system?

http://www.cyberciti.biz/faq/linux-patch-cve-2015-7547-glibc-getaddrinfo-stack-based-buffer-overflow/

Posted from WordPress for Android

1 Comment

February 18, 2016 at 6:26 am
Tomi Engdahl says:

More details on vulnerability:

Severe Glibc DNS Vulnerability Found
http://www.epanorama.net/newepa/2016/02/17/severe-glibc-dns-vulnerability-found/

Reply

How To Patch and Protect Linux Glibc Getaddrinfo Stack-based Buffer Overflow Zero Day Vulnerability CVE-2015-7547 and CVE-2015-5229 [ 16/Feb/2016 ]

1 Comment

Tomi Engdahl says:

Leave a Comment Cancel reply