Hi, On Fri, 30 Jan 2015 10:11:52 -0500 symack wrote: > Hello, > > From my understanding this is only an issue if a person is able to telnet > or ssh > to an effected system? Please confirm.
Are you talking about "ghost" issue or about GLSA I mentioned above? If about "ghost", then NO. Any applicaton using gethostbyname() or gethostbyname2() and <glibc-2.18 IS vulnerable. Best regards, Andrew Savchenko
pgp0memZyNaAg.pgp
Description: PGP signature