Update on security breach of operating system Linux

security breach Linux

Yesterday, a critical security breach was detected which threatens almost all versions of the operating system Linux. To our knowledge, users of our shared hosting systems as well as customers of our server products using our default setup are protected by a filter mechanism. Currently all affected systems are patched with secure software versions.

We highly recommend to customers using servers with root access (Dedicated, Virtual and Cloud Server) to install the available patches for their Linux distribution. If there is no automatic update for the employed system available, users are advised to manually install the latest patch.

Secure Linux versions for the respective distribution can be found via the following links:

Debian:             https://security-tracker.debian.org/tracker/CVE-2015-7547

Ubuntu:           http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-7547.html

RedHat:           https://access.redhat.com/security/cve/cve-2015-7547

SUSE:                 https://www.suse.com/security/cve/CVE-2015-7547.html

CentOS:           https://www.centos.org/forums/viewtopic.php?f=17&t=56467#p238300

This security breach was found in the central Linux library “glibc” and can be exploited on different systems through the internet. Here’s an example:

Google Blog: https://googleonlinesecurity.blogspot.de/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.htm

ZDNet: http://www.zdnet.com/article/patch-linux-now-google-red-hat-warn-over-critical-glibc-bug/

 

Image: 1&1

Category: 1&1 Cloud Server | Cloud | Developers | Net World | Products | Server & Hosting
0 comments0