cloudstack-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Nux! <...@li.nux.ro>
Subject Re: Ghost glibc vulnerability and CloudStack
Date Thu, 29 Jan 2015 10:30:46 GMT
As far as the SSVM is concerned, can this be exploited remotely?

Lucian

--
Sent from the Delta quadrant using Borg technology!

Nux!
www.nux.ro

----- Original Message -----
> From: "John Kinsella" <jlk@stratosec.co>
> To: dev@cloudstack.apache.org
> Sent: Wednesday, 28 January, 2015 21:17:42
> Subject: Re: Ghost glibc vulnerability and CloudStack

> https://blogs.apache.org/cloudstack/entry/cloudstack_and_the_ghost_glibc has now
> been updated with links to download the updated SSVM
> 
> John
> 
> On Jan 28, 2015, at 11:55 AM, John Kinsella
> <jlk@stratosec.co<mailto:jlk@stratosec.co>> wrote:
> 
> There’s a new vulnerability out in most Linux distributions that has potential
> to be fairly severe. As it affects most Linux distributions, we’re putting
> mitigation steps out immediately at [1].
> 
> This affects many Linux distributions, so please review management servers,
> databases, storage systems, etc.
> 
> An updated SSVM template is being QAed, once released the post will be updated
> with links and we’ll mention here as well.
> 
> John
> 1: https://blogs.apache.org/cloudstack/entry/cloudstack_and_the_ghost_glibc

Mime
View raw message