ID:	6987	Fixed in:
Issue Date:	2016-02-18 09:54 AEST	Owner:	CVS Support
Last Modified:	2016-02-18 10:54 AEST	Reporter:	Arthur Barrett
Current Est.	0.0 hours	% Complete:	0.0
Status:	NEW /	Severity:	normal

Affected:	2.8.01
Description:	investigate impact of CVE-2015-7547 on CVSNT

Actions:

2016-02-18 09:54 AEST by Arthur Barrett - CVE-2015-7547 is a Critical security bug (stack-based buffer overflow) in glibc: getaddrinfo.

This issue does not affect the versions of glibc as shipped with Red Hat Enterprise Linux 3, 4 and 5.
https://access.redhat.com/security/cve/cve-2015-7547

Since these are the versions of glibc that we link against (or even earlier RH9), I think there is no 
impact to CVSNT.

A (rather sensational?) article about it can be found here:
http://arstechnica.com/security/2016/02/extremely-severe-bug-leaves-dizzying-number-of-apps-and-
devices-vulnerable/

Query page