Jan 28 |
GHOST Vulnerability ( CVE-2015-0235 )
Posted by Steve N on 28 January 2015 11:47 PM |
GHOST Vulnerability ( CVE-2015-0235 ) On 27 January 2015, a vulnerability in all versions of the GNU C library (glibc) was announced by Qualys. The issue was a buffer overflow during DNS hostname resolution. Disclosure of this issue was coordinated with the various operating system vendors and patches were made available by RedHat soon after the initial announcement went out. Impact The updated RPMs provided by RedHat, CentOS and CloudLinux should contain a changelog entry with the CVE number. You can check for this changelog entry with the following command:
https://documentation.cpanel.net/display/CKB/CVE-2015-0235+GHOST We have deployed updates to all servers which has ntServerGuard installed. Servers without ntServerGaurd are being patched/updated manually. If you find your server still has this vulnerability, please feel free to contact our support team ASAP. | |