VyOS Networks Blog

Building an open source network OS for the people, together.

CVE-2015-0235

Daniil Baturin
Posted 28 Jan, 2015

You’ve probably heard of CVE-2015-0235 already: buffer overflow in glibc gethostbyname() function allows for arbitrary code execution.

This is potentially high risk and must be addresses. Squeeze-LTS team says they are working on the update package, so we are just waiting for them to roll out the update. Once it’s available, we’ll start working on updated images. Stay tuned.

The post categories:

Comments