Skip to content

mikesplain/CVE-2015-0235-cookbook

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
files/default
files/default
 
 
recipes
recipes
 
 
.gitignore
.gitignore
 
 
.kitchen.yml
.kitchen.yml
 
 
Berksfile
Berksfile
 
 
CHANGELOG.md
CHANGELOG.md
 
 
Gemfile
Gemfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
Rakefile
Rakefile
 
 
Thorfile
Thorfile
 
 
chefignore
chefignore
 
 
circle.yml
circle.yml
 
 
metadata.rb
metadata.rb
 
 

Repository files navigation

CVE-2015-0235-cookbook

Circle CI Dependency Status

This cookbook will test if you are vulnerable to CVE-2015-0235.

Current behavior will error out when test fails:

bash 'test vulnerability against libc' do
  cwd Chef::Config[:file_cache_path]
  code <<-EOH
    ./CVE-2015-0235
    EOH
  returns [1]
end

For debian based systems: CVE-2015-0235

For Rhel based systems: CVE-2015-0235

Supported Platforms

  • Debian / Ubuntu
  • Centos / Rhel

Todo

  • Add Test for currently running processes still using old version (easy in debian with checkrestart -v)
  • Add a script to help with fixing?

Usage

CVE-2015-0235::default

Include CVE-2015-0235 in your node's run_list:

{
  "run_list": [
    "recipe[CVE-2015-0235]"
  ]
}

License and Authors

Author:: Mike Splain (mike.splain@gmail.com)

About

A chef cookbook to test the GHOST vulnerability

Resources

Readme

License

View license
Activity

Stars

3 stars

Watchers

3 watching

Forks

1 fork
Report repository

Releases

2 tags

Packages

 
 
 

Languages