oss-sec mailing list archives
Re: workaround for GHOST glibc vulnerability CVE-2015-0235
From: Qualys Security Advisory <qsa () qualys com>
Date: Tue, 3 Feb 2015 03:15:48 -0800
On Tue, Feb 03, 2015 at 11:30:13AM +0100, Florian Weimer wrote:
Why don't you hook gethostbyname? I'm not sure if gethosybyname is implement in terms of gethostbyname_r. (The call stacks I have suggest it isn't.)
Actually, gethostbyname() calls gethostbyname_r(), but before it does, it calls the vulnerable function __nss_hostname_digits_dots(), so you're right, this would still be exploitable. With best regards, -- the Qualys Security Advisory team
Current thread:
- workaround for GHOST glibc vulnerability CVE-2015-0235 Constantine Shulyupin (Feb 02)
- Re: workaround for GHOST glibc vulnerability CVE-2015-0235 Florian Weimer (Feb 03)
- Re: workaround for GHOST glibc vulnerability CVE-2015-0235 Constantine Shulyupin (Feb 03)
- Re: workaround for GHOST glibc vulnerability CVE-2015-0235 Qualys Security Advisory (Feb 03)
- Re: workaround for GHOST glibc vulnerability CVE-2015-0235 Florian Weimer (Feb 03)