January 30, 201511 yr The widespread Linux vulnerability known as GHOST is receiving a lot of attention at present. As unraid is a stripped down Linux distro, do we know if it is affected and if any bug fix is planned please? Shouldn't imagine (m)any of our servers are net-facing but even so ...
January 30, 201511 yr The widespread Linux vulnerability known as GHOST is receiving a lot of attention at present. As unraid is a stripped down Linux distro, do we know if it is affected and if any bug fix is planned please? Shouldn't imagine (m)any of our servers are net-facing but even so ... It's vulnerable: http://www.cyberciti.biz/faq/cve-2015-0235-ghost-glibc-buffer-overflow-linux-test-program/ root@Servidor:~# gcc -o GHOST GHOST.c root@Servidor:~# ./GHOST vulnerable root@Servidor:~#
January 30, 201511 yr Hmmm I'm assuming the attack surface would be pretty small (ie attacker on local lan?) for a server not open to the outside world AT ALL? What do we know about external threat from GHOST when the server has internet facing apps installed like Transmission, Plex, Crashplan, nvbget (or whatever those are) and the other typical apps folks use?
Archived
This topic is now archived and is closed to further replies.