GHOST Vulnerability

February 03, 2015

On January 27, 2015 a heap-based buffer overflow bug, commonly known as 'GHOST', was discovered in the gethostbyname() functions in the glibc library. glibc is the GNU implementation of the C standard library, and is included in most Linux distributions. More information about this vulnerability can be foundĀ here.

No SOTI products use the glibc library, and SOTI's infrastructure is not affected. Also note that glibc is not included in Windows, iOS or Android by default. If you do not use the glibc library on any of your systems, then no action is required.