Security Patch for Ghost (CVE-2015-023)
Posted: Wed Jan 28, 2015 1:51 pm
Is the OPI vulnerable to the "Ghost" security bug (CVE-2015-0235) (see: http://arstechnica.com/security/2015/01 ... x-systems/).
An extremely critical vulnerability affecting most Linux distributions gives attackers the ability to execute malicious code on servers used to deliver e-mail, host webpages, and carry out other vital functions. ... The vulnerability in the GNU C Library (glibc) represents a major Internet threat, in some ways comparable to the Heartbleed and Shellshock bugs that came to light last year. ... While a patch was issued two years ago, most Linux versions used in production systems remain unprotected at the moment.
If the OPI is vulnerable to the Ghost bug, please put it at the top of the list for the next update.
Thanks,
Andrew
An extremely critical vulnerability affecting most Linux distributions gives attackers the ability to execute malicious code on servers used to deliver e-mail, host webpages, and carry out other vital functions. ... The vulnerability in the GNU C Library (glibc) represents a major Internet threat, in some ways comparable to the Heartbleed and Shellshock bugs that came to light last year. ... While a patch was issued two years ago, most Linux versions used in production systems remain unprotected at the moment.
If the OPI is vulnerable to the Ghost bug, please put it at the top of the list for the next update.
Thanks,
Andrew