ICT Security-Sécurité PC et Internet
87.1K views | +0 today
Follow
ICT Security-Sécurité PC et Internet
Education Technology
ICT Security + Privacy + Piracy + Data Protection - Censorship - Des cours et infos gratuites sur la"Sécurité PC et Internet" pour usage non-commercial... (FR, EN+DE)...
Curated by Gust MEES
Your new post is loading...
Your new post is loading...
Scooped by Gust MEES
Scoop.it!

Google, Red Hat discover critical DNS security flaw that enables malware to infect entire internet | CyberSecurity | #GlibC

Google, Red Hat discover critical DNS security flaw that enables malware to infect entire internet | CyberSecurity | #GlibC | ICT Security-Sécurité PC et Internet | Scoop.it
From www.ibtimes.co.uk - February 25, 2016 9:40 AM
Google and enterprise software firm Red Hat have discovered a critical security flaw affecting the Internet's Domain Name System (DNS), found in a universally used protocol. This means an attacker could use it to infect almost everything on the entire internet. With the flawed code spread far and wide, it will likely take years of effort to patch the bug.

Google and Red Hat engineers both independently discovered the DNS bug within the GNU C standard library (glibc), which has been assigned CVE-2015-7547, and then worked together to create a patch. The security vulnerability works by tricking browsers into looking up suspicious domains, which causes servers to reply with DNS names that are far too long, thus causing a buffer overflow in the victim's software.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/securite-pc-et-internet/?tag=Linux


Gust MEES's insight:
Google and enterprise software firm Red Hat have discovered a critical security flaw affecting the Internet's Domain Name System (DNS), found in a universally used protocol. This means an attacker could use it to infect almost everything on the entire internet. With the flawed code spread far and wide, it will likely take years of effort to patch the bug.

Google and Red Hat engineers both independently discovered the DNS bug within the GNU C standard library (glibc), which has been assigned CVE-2015-7547, and then worked together to create a patch. The security vulnerability works by tricking browsers into looking up suspicious domains, which causes servers to reply with DNS names that are far too long, thus causing a buffer overflow in the victim's software.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/securite-pc-et-internet/?tag=Linux


more...
No comment yet.
Sign up to comment
Scooped by Gust MEES
Scoop.it!

Patch Linux now, Google, Red Hat warn, over critical glibc bug | CyberSecurity | Updates

Patch Linux now, Google, Red Hat warn, over critical glibc bug | CyberSecurity | Updates | ICT Security-Sécurité PC et Internet | Scoop.it
From www.zdnet.com - February 17, 2016 12:58 PM
Google has disclosed details of an open-source bug in the GNU C Library affecting a large number of Linux distributions, software and devices.




Learn more:


http://www.scoop.it/t/securite-pc-et-internet/?tag=Linux


Gust MEES's insight:
Google has disclosed details of an open-source bug in the GNU C Library affecting a large number of Linux distributions, software and devices.


Learn more:


http://www.scoop.it/t/securite-pc-et-internet/?tag=Linux


more...
No comment yet.
Sign up to comment
Scooped by Gust MEES
Scoop.it!

Years-old critical GNU C Library vulnerability patched by open source providers | Linux | CyberSecurity

Years-old critical GNU C Library vulnerability patched by open source providers | Linux | CyberSecurity | ICT Security-Sécurité PC et Internet | Scoop.it
From www.grahamcluley.com - February 19, 2016 9:10 AM
Ubuntu, Red Hat, and a number of other leading open source solutions providers have patched a critical vulnerability in the GNU C Library that has been around for years.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/securite-pc-et-internet/?tag=Linux


Gust MEES's insight:
Ubuntu, Red Hat, and a number of other leading open source solutions providers have patched a critical vulnerability in the GNU C Library that has been around for years.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/securite-pc-et-internet/?tag=Linux


more...
No comment yet.
Sign up to comment
Scooped by Gust MEES
Scoop.it!

ALERT!!! Glibc: Sicherheitslücke gefährdet fast alle Linux-Systeme - #Update asap!!!

ALERT!!! Glibc: Sicherheitslücke gefährdet fast alle Linux-Systeme - #Update asap!!! | ICT Security-Sécurité PC et Internet | Scoop.it
From www.golem.de - February 16, 2016 2:57 PM
Sicherheitslücke gefährdet fast alle Linux-Systeme
Eine schwerwiegende Sicherheitslücke klafft in der Glibc-Bibliothek, die in fast allen Linux-Systemen genutzt wird: Eine DNS-Funktion erlaubt die Ausführung von bösartigem Code. Nutzer sollten schnellstmöglich Updates installieren.
Diese Sicherheitslücke hat es in sich: Mittels gezielter DNS-Antworten lässt sich unter Umständen die Namensauflösungsfunktion der Glibc-Bibliothek dazu bringen, fremden Code auszuführen. Die Glibc ist die Standard-C-Bibliothek, die üblicherweise auf Linux-Systemen zum Einsatz kommt.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/securite-pc-et-internet/?tag=Linux



Gust MEES's insight:
Sicherheitslücke gefährdet fast alle Linux-Systeme
Eine schwerwiegende Sicherheitslücke klafft in der Glibc-Bibliothek, die in fast allen Linux-Systemen genutzt wird: Eine DNS-Funktion erlaubt die Ausführung von bösartigem Code. Nutzer sollten schnellstmöglich Updates installieren.
Diese Sicherheitslücke hat es in sich: Mittels gezielter DNS-Antworten lässt sich unter Umständen die Namensauflösungsfunktion der Glibc-Bibliothek dazu bringen, fremden Code auszuführen. Die Glibc ist die Standard-C-Bibliothek, die üblicherweise auf Linux-Systemen zum Einsatz kommt.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/securite-pc-et-internet/?tag=Linux


more...
No comment yet.
Sign up to comment
About Follow us Resources Terms Mobile Features
Facebook
X
LinkedIn