APAC CIO Outlook
  • Home
  • CXO Insights
  • CIO Views
  • News
  • Conferences
  • Newsletter
  • Whitepapers
  • About us
Apac
  • Admired Tech

    Agile

    AI Healthcare

    Artificial Intelligence

    Augmented Reality

    Aviation

    Big Data

    Blockchain

    Cloud

    Cryptocurrency

    Cyber Security

    Digital Transformation

    Drone

    HPC

    Infrared

    Internet of Things

    Networking

    PropTech

    Remote Work

    Scheduling Software

    Simulation

    Startup

    Storage

    Wireless

  • Banking

    E-Commerce

    Education

    FinTech

    Food and Beverages

    Healthcare

    Insurance

    Legal

    Manufacturing

    Pharma and Life Science

    Retail

    Travel and Hospitality

  • Atlassian

    CISCO

    Microsoft

    Oracle

    Salesforce

    SAP

    ServiceNow

  • Business Intelligence

    CEM

    Cloud-based Planning

    Cognitive

    Compliance

    Contact Center

    Contact Tracing

    Contactless Payments

    Content Management System

    Corporate Finance

    CRM

    Custom Software Development

    Data Center

    Enterprise Architecture

    Enterprise Communications

    Enterprise Contract Management

    ERP

    Field Service

    HR Technology

    IT Service Management

    Managed Services

    Procurement

    Product Management

    RegTech

    Revenue Management

    Sales Tech

Menu
    • Augmented Reality
    • Agile
    • Cognitive
    • Cyber Security
    • Digital Transformation
    • Atlassian
    • E-Commerce
    • Managed Services
    • RegTech
    • CISCO
    • Blockchain
    • IoT
    • MORE
    #

    Apac CIO Outlook Weekly Brief

    ×

    Be first to read the latest tech news, Industry Leader's Insights, and CIO interviews of medium and large enterprises exclusively from Apac CIO Outlook

    Subscribe

    loading

    THANK YOU FOR SUBSCRIBING

    • Home
    • News
    • Google
    Editor's Pick (1 - 4 of 8)
    left
    Google Technology Making Business Simpler

    Pedro Sttau, Former CIO, Icar Asia and Executive Director, Dbs Bank (Sgx: Mu7)

    A Proactive Approach to Google Implementation

    Roddy Mckaig, VP & CIO, Shaw Industries

    Google App Engine-The Myriad Advantages

    Larry Schiefer,

    Upgrade Your RFP Process

    Ray Moukaddem, Senior Director of Success Cloud APAC, Salesforce (NYSE: CRM)

    Powering Titles on a High-performance Cloud Platform

    Minhao Zhang, CTO, Oasis Games Limited

    Advancing and Benefiting From Cloud

    Sanjay Sivam, Director, Inside Sales and Services Sales, Poly Asia Pacific

    Harnessing the Business Cloud

    Dean Vaughan, Vice President of Sales for Asia Pacific and Japan, Silver Peak

    Why Machine Learning is Good Business

    Albert Bielinko, Growth Equity Investor, Telstra Ventures

    right

    Google Engineers find a Critical Flaw in Linux Systems

    By apacciooutlook | Wednesday, March 02, 2016

    Tweet
    content-image

    FREMONT, CA: Linux users are vulnerable to a critical flaw in the core glibc open-source library as the glibc flaw can be used to expose systems to a remote code execution risk. The glibc vulnerability is identified as CVE-2015-7547 and is titled, "getaddrinfo stack-based buffer overflow,” reports Sean Michael Kerner for eWeek.

    The glibc, or GNU C Library, is an open-source implementation of the C and C++ programming language libraries and is part of every major Linux distribution. Google engineers came across the CVE-2015-7547issue when they were attempting to connect into a certain host system and a segmentation fault (segfault) occurred, causing the connection to crash. Further investigation revealed that glibc was at fault and the crash could potentially achieve an arbitrary remote code execution condition.

    Exploiting the CVE-2015-7547 issue is not trivial, but possible. To prove that the issue can be exploited, Google has published proof-of-concept (PoC) code on GitHub that demonstrates if an end user or system is vulnerable. "The server code triggers the vulnerability and therefore will crash the client code," the GitHub PoC page states.

    "The glibc DNS client side resolver is vulnerable to a stack-based buffer overflow when the getaddrinfo() library function is used," Google wrote in a blog post. "Software using this function may be exploited with attacker-controlled domain names, attacker-controlled DNS [Domain Name System] servers, or through a man-in-the-middle attack."

    Weekly Brief

    loading
    ON THE DECK

    Retail 2021

    Top Vendors

    Compliance 2021

    Top Vendors

    Previous Next

    I agree We use cookies on this website to enhance your user experience. By clicking any link on this page you are giving your consent for us to set cookies. More info

    Read Also

    Role of AI in the Retail Sector

    Role of AI in the Retail Sector

    How Can Smart Retail Tech Help In A Post-Covid Retail Environment?

    How Can Smart Retail Tech Help In A Post-Covid Retail Environment?

    How Cognitive Computing Transforms Healthcare?

    How Cognitive Computing Transforms Healthcare?

    How to Establish Effective Cybersecurity Leadership in Post-COVID Era?

    How to Establish Effective Cybersecurity Leadership in Post-COVID Era?

    Disrupted Employees and Cybersecurity Risks

    Disrupted Employees and Cybersecurity Risks

    The Importance of Cognitive Analytics in Business Growth

    The Importance of Cognitive Analytics in Business Growth

    Loading...

    Copyright © 2021 APAC CIOoutlook. All rights reserved. Registration on or use of this site constitutes acceptance of our Terms of Use and Privacy and Anti Spam Policy 

    |  Sitemap |  Subscribe

    follow on linkedinfollow on twitter follow on rss
    This content is copyright protected

    However, if you would like to share the information in this article, you may use the link below:

    https://www.apacciooutlook.com/news/google-engineers-find-a-critical-flaw-in-linux-systems-nwid-1189.html