Skip to content

makelinux/CVE-2015-0235-workaround

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

21 Commits

.gitignore

.gitignore

 
 

GHOST2.c

GHOST2.c

 
 

Makefile

Makefile

 
 

README.md

README.md

 
 

gethostbyname_wrap.c

gethostbyname_wrap.c

 
 

gethostbyname_wrap_test.sh

gethostbyname_wrap_test.sh

 
 

Repository files navigation

CVE-2015-0235-workaround

aka GHOST glibc vulnerability

A shared library wrapper with additional checks for the vulnerable functions gethostbyname2_r and gethostbyname_r .

The proper solution for CVE-2015-0235 is to upgrade glibc to at least glibc-2.18.

In some cases, an immediate glibc upgrade is not possible, for example in custom production embedded systems, because such an upgrade requires a validation of the whole system.

In such cases, this workaround provides a hot fix solution, which is easier to validate.

Usage:

Compile, install and add gethostbyname_wrap.so /etc/ld.so.preload

About

A shared library wrapper with additional checks for vulnerable functions gethostbyname2_r gethostbyname_r (GHOST vulnerability)

Resources

Readme
Activity

Stars

6 stars

Watchers

2 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages