USN-2900-1: GNU C Library vulnerability
16 February 2016
GNU C Library could be made to crash or run programs if it received specially crafted network traffic.
- eglibc - GNU C Library
- glibc - GNU C Library
It was discovered that the GNU C Library incorrectly handled receiving
responses while performing DNS resolution. A remote attacker could use this
issue to cause the GNU C Library to crash, resulting in a denial of
service, or possibly execute arbitrary code.
The problem can be corrected by updating your system to the following package versions:
After a standard system update you need to reboot your computer to make
all the necessary changes.