Glibc is the standard C library that ships with mosts version of Linux. It includes many functions that handle the common tasks programs might need, such as looking up IP addresses associated with domain names. This week, Google and Red Hat researchers disclosed a serious vulnerability in this common library, which could allow remote attackers to execute code on your Linux machines. Watch today’s Byte to learn more about this issue, and what computers or devices it might affect.
(Episode Runtime: 3:26)
Direct YouTube Link: https://www.youtube.com/watch?v=j72tvt2Pfjk
EPISODE REFERENCES:
- UPDATE: Knowledge Base article describing how WatchGuard products are affected – WatchGuard
- Glibc buffer overflow vulnerability allows code execution – Google Blogspot
- Red Hat patch advisory for glibc vulnerability – Sourceware.org
- Proof of Concept exploit for the glibc bug – Github
- Article covering the Linux glibc issue – The Register