[ELDK] ELDK 5.4 and 'GHOST' glibc bug
Albrecht Dreß
albrecht.dress at arcor.de
Mon Feb 2 19:36:36 CET 2015
Hi all,
I use ELDK v. 5.4 for a PowerPC (MPC5200B) target. Due to [1], upgrading to 5.5.x is not an option for me.
It appears, though, that the glibc coming with 5.4 is vulnerable by CVE-2015-0235 (glibc 'GHOST' gethostbyname buffer overflow; [2]).
Before downloading 5.6 - does it have both the gcc/PowerPC glitch *and* the GHOST bug fixed? Or will you provide an update for 5.4?
Thanks,
Albrecht.
[1] <http://lists.denx.de/pipermail/eldk/2014-October/002548.html>
[2] <http://www.openwall.com/lists/oss-security/2015/01/27/9>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 190 bytes
Desc: not available
URL: <http://lists.denx.de/pipermail/eldk/attachments/20150202/87614848/attachment.sig>
More information about the eldk
mailing list