Login

Shortcuts

Critical glibc bug puts a huge number of Linux machines and routers at risk

2016-02-17 12:19 by Philip

Researchers have discovered a critical bug in the GNU C Library (glibc) that appears to be originally introduced in 2008 with version 2.9 of the library. Glibc is a collection of open source code that provides core functions across Linux. It powers thousands of applications and most Linux distributions, including many routers, firewalls and other types of network hardware.

More specifically, the discovered bug has to do with a buffer overflow in a function known as getaddrinfo() that performs DNS lookups. It can be exploited when vulnerable devices or software make DNS queries to attacker-controlled domains (or DNS servers), or when exposed to a man-in-the-middle attack. All versions of glibc after 2.9 are vulnerable.

There has been a patch released for the vulnerability on 2016-02-16 here, however, it will be a long time before it can propagate to the majority of apps and distributions. There are some possible mitigations of the bug impact, including limiting DNS reply packet sizes.

Read more here:

Ars Technica article
The Hacker News article
CVE-2015-7547

User Reviews/Comments:

rate: avg:

by anonymous - 2016-02-21 15:50

Any know when ms plan to tackle this issue ? Since everything is Linus based somewhere along the way it would be nice if ms also patched somehow even if they aren't directly affected their customer are still affected indirectly. And with internet of things just around it will only get worst

News Glossary of Terms

Cool Links SpeedGuide Teams

SG Premium Services SG Gear Store

Registry Tweaks Broadband Tools

Downloads/Patches Broadband Hardware

SG Ports Database Security

Default Passwords User Stories

Broadband Routers Wireless

Firewalls / VPNs Software

Hardware User Reviews

Broadband Security

Editorials General

User Articles Quick Reference

Broadband Forums General Discussions

Advertising Awards

Link to us Server Statistics

Helping SG About

XML - RSS Feeds

General Links Broadband Links Networking Links

Windows 2k/XP Registry Tweaks Windows 2k/XP - More Tweaks Windows 9x/ME Registry Tweaks Advanced Tweaking System.ini IRQ Tweak Host Resolution Priority Tweak Linux Broadband Tweaks Windows XP SP2 tcpip.sys connection limit patch LAN Tweaks for Windows XP, 2000, 2003 Server Internet Explorer, Chrome, Firefox Web Browser Tweaks Windows 2003 TCP/IP parameters Windows 7, Vista, 2008 Tweaks Windows Vista tcpip.sys connection limit patch for Event ID 4226 Gaming Tweaks LAN Tweaks for Windows 7, 8, 10 Windows 8, 10, 2012 Server TCP/IP Tweaks

SG TCP/IP Analyzer SG TCP/IP Optimizer SG Security Scanner SG Speed Test SG IP Locator Network Tools Bits/Bytes Calculator RWIN/BDP Calculator DSL Speed Calculator WLAN Key Generator Hash Generator

TCP Optimizer Download TCP Optimizer Documentation

Scanned Ports Commonly Open Ports All Ports

Broadband Speed Test Test Stats Provider Stats Country Stats Mirror Stats

Cable Horror Story Cable-Modem Security Worries D-Link DFL-300 VPN Router DSL Hell Get a Cable Modem - Go to Jail ??!? (external) Intermittent Cable signal It Figures - The need for a firewall MediaOne RoadRunner - Kicking in Network adapter MAC/OUI/Brand affect latency Road Runner Security - File and Print Sharing Router speed drop solved RR Tech Support Incompetence ... Short Stories and Fixes Squirrels and rain can slow down an ADSL modem... Telefonica Incompetence, Xenophobia or Fraud? The IP That Just Wouldn\'t Stick. Wireless Networks and WEP

Belkin F5D5230 Compex NetPassage 15B D-Link DI-701 Linksys BEFSR41 Router SOHOWARE BroadGuard NBG800 WebRamp 700s ZyXEL Prestige 310 Nexland

ISB2LAN Router Review Nexland ISB-SOHO

Cayman 2E-H-W Compex NetPassage 26G Wireless Gateway Diamond HomeFree SMC Barricade 7004AWBR

ZyXEL ZyWALL 10

Tiny Software Personal Firewall v1.0 WinGate 4.1.1

Linksys Instant GigaDrive

Acer TravelMate 292 XC Laptop D-Link DI-524 Wireless Router First look at Nexland Pro 400 ADSL with Wireless Netgear RP614 Review

Bits, Bytes and Bandwidth Reference Guide Ethernet auto-sensing and auto-negotiation How to Make Network Cables How to repair TCP/IP and Winsock How to set a Wireless Router as an Access Point Internet connection Sharing Network Adapter Optimization Router Configuration Guide The TCP Window, Latency, and the Bandwidth Delay product Windows 10 Anniversary updates to TCP Wireless Antenna Guide Wireless Network Speed Tweaks WLAN Primer

General Security Guide How To Crack WEP and WPA Wireless Networks IRDP Security Vulnerability in Windows Why encrypt your online traffic with VPN ?

Cable Modems Technology Overview CISCO/VALVE PowerPlay MTU, what difference does it make ? Satellite Internet - What is it ? Server Based Network Guide Tom\'s Easy Home Networking Uncapping, The makings of a Semi-Myth

How to Backup using Batch Files Ramdisk Guide SSD Linux Tweaks SSD Speed Tweaks Windows 2k/XP Tweaks Windows 9x Tweaks

5 Ways to Improve your Wireless Network Cable modem signal levels Cable Troubleshooting Guide Crimson Editor Difference between Routers, Switches and Hubs How DSL Internet Access Works ISPs hijack failed searches The History of DSL Internet Access Tips to improve your SNR Wi-Fi Glossary Wireless Broadband service and LONG Range

ADSL VPI, VCI and Encapsulation settings BIOS Error Codes Choosing RAM Type How to turn Wireless on/off in various Laptop models Linux TCP/IP parameters reference Subnetting and IPv4 Address Classes TCP Structure - Transmission Control Protocol The TCP/IP and OSI Network Models TLD Country Code Reference UDP - User Datagram Protocol Wireless LAN Standards

General Cable/DSL Forum Broadband Tweaks Routers/Internet Sharing Networking Wireless Networking Network Security Internet Providers

US Broadband Providers International Broadband Providers Dialup & Other connectivity

General Forum Hardware & OCing Software Gaming Digital Media Automotive SG Distributed Computing Classifieds & Hot Deals User Feedback

Cases & Modding