The __nss_hostname_digits_dots() function of the GNU C Library (glibc) allows a buffer overflow condition in which arbitrary code may be executed. This vulnerability has been assigned CVE-2015-0235, and is referred to in the media by the name "GHOST".
According to Qualys, the vulnerability is "a buffer overflow in the __nss_hostname_digits_dots() function of the GNU C Library (glibc). This bug is reachable both locally and remotely via the gethostbyname*() functions" and furthermore, "arbitrary code execution can be achieved" by use of the buffer overflow.
All versions of glibc from glibc-2.2 (released 2010-11-10) until glibc-2.17 are vulnerable. The vulnerability was patched on 2013-05-21, prior to the release of glibc-2.18.
The __nss_hostname_digits_dots() function allows a buffer overflow condition in which arbitrary code may be executed. The impact may vary depending on if the use case is local or remote.
Apply an update
Some older, no longer supported versions of linux distributions may contain an older version of glibc that is vulnerable. Please check with your vendor to find out if you need to upgrade to a newer operating system in order to address this issue.
Arch Linux Affected
Blue Coat Systems Affected
Cisco Systems, Inc. Affected
Debian GNU/Linux Affected
F5 Networks, Inc. Affected
Gentoo Linux Affected
Juniper Networks, Inc. Affected
NEC Corporation Affected
Openwall GNU/*/Linux Affected
Red Hat, Inc. Affected
SUSE Linux Affected
Slackware Linux Inc. Affected
openSUSE project Affected
Contiki OS Not Affected
Cray Inc. Unknown
Fedora Project Unknown
Hewlett-Packard Company Unknown
IBM Corporation (zseries) Unknown
IBM eServer Unknown
Mandriva S. A. Unknown
Oracle Corporation Unknown
Credit to Qualys for discovering the vulnerability.
This document was written by Garret Wassermann.
|Date First Published:||2015-01-28|
|Date Last Updated:||2015-10-22 13:00 UTC|