Active Topics

 


Reply
Thread Tools
Posts: 2,076 | Thanked: 3,268 times | Joined on Feb 2011
#1
https://community.qualys.com/blogs/l...-vulnerability

versions affected 2.2-2.17.x (fixed between 17 and 18, not exactly sure which)

this thread could maybe get some much needed love:
http://talk.maemo.org/showthread.php?t=89467

last version from Aapo eglibc-2.17.90 should actually be safe as they are from June 2013 and the fix was in May (though still issues with calendar)
http://talk.maemo.org/showpost.php?p...4&postcount=29
 

The Following 9 Users Say Thank You to szopin For This Useful Post:
Posts: 646 | Thanked: 1,124 times | Joined on Jul 2010 @ Espoo, Finland
#2
Originally Posted by szopin View Post
last version from Aapo eglibc-2.17.90 should actually be safe
The post from Qualys lists at the bottom a link to the Qualys security advisory which contains a short C program to test whether a system is vulnerable or not, so it should be pretty simple to verify when a system is 'patched'.
 

The Following User Says Thank You to minimos For This Useful Post:
Posts: 254 | Thanked: 509 times | Joined on Nov 2011 @ Canada
#3
Here's the compiled test program. Shows "vulnerable" for the n900 on latest CSSU-thumb.
Attached Files
File Type: zip ghost.zip (3.2 KB, 76 views)
 

The Following 8 Users Say Thank You to shawnjefferson For This Useful Post:
Reply

Thread Tools

 
Forum Jump


All times are GMT. The time now is 05:15.