Jeremy Morse
2016-02-16 17:00:56 UTC
Hi,
CVE-2015-7547 was just announced, a glibc stack overflow in getaddrinfo.
It looks like everyone who might ever look closely at a v6 socket is
vulnerable, and there are no immediate patches for fedora 22. I've
disabled v6 on saffron for now, and it'll stay off until patched
packages become available.
More info:
https://sourceware.org/ml/libc-alpha/2016-02/msg00416.html
https://isc.sans.edu/forums/diary/CVE20157547+Critical+Vulnerability+in+glibc+getaddrinfo/20737/
--
Thanks,
Jeremy
CVE-2015-7547 was just announced, a glibc stack overflow in getaddrinfo.
It looks like everyone who might ever look closely at a v6 socket is
vulnerable, and there are no immediate patches for fedora 22. I've
disabled v6 on saffron for now, and it'll stay off until patched
packages become available.
More info:
https://sourceware.org/ml/libc-alpha/2016-02/msg00416.html
https://isc.sans.edu/forums/diary/CVE20157547+Critical+Vulnerability+in+glibc+getaddrinfo/20737/
--
Thanks,
Jeremy
--
You received this message because you are subscribed to the Google Groups "Student Robotics Development" group.
To unsubscribe from this group and stop receiving emails from it, send an email to srobo-devel+***@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
You received this message because you are subscribed to the Google Groups "Student Robotics Development" group.
To unsubscribe from this group and stop receiving emails from it, send an email to srobo-devel+***@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.