Critical security bug hits South African websites

Many Linux-hosted websites, including those hosted in South Africa, are vulnerable to a “potentially catastrophic” flaw in a core software library.

By - February 17, 2016 Share on LinkedIn
Critical software security bug

A severe vulnerability recently uncovered in the widely-used GNU C Library (glibc) can cause severe security problems for websites if they don’t patch soon.

Ars Technica recently reported that the bug was introduced in 2008 in a function known as getaddrinfo(), and affects all kinds of devices — not just web servers.

All versions of glibc after 2.9 are vulnerable to a buffer overflow bug that lets attackers remotely execute malicious code.

It can be exploited in a number of ways, such as when vulnerable devices or applications perform domain name lookups on attacker-controlled domains, or domain name servers.

Researchers have warned that tools such as SSH, sudo, wget, and curl are all known to be vulnerable.

Ars reported that one Linux-based platform that is not vulnerable is Android, with Google explaining that it uses a substitute for glibc called Bionic.

Hetzner servers patched

Hetzner has sent an alert to its custom hosting customers informing them about the vulnerability, and recommending that they reboot their servers.

All affected services on Hetzner’s managed server platform will be restarted without the servers themselves being rebooted.

This is in order to minimise the impact on customers, and is in line with Debian’s security advisory, Hetzner said.

Anonymous hacks and leaks South African government data

The South African government passwords cracked in Anonymous database hack

Hetzner partners with DFA to offer greater ISP choice

Inside Hetzner’s new data centre

Share your thoughts

Join the conversation

Connect with Us

androidappletwitterfacebookgoogleplusfeednewsletter

Poll

Do you regularly use Uber?

View Results

Loading ... Loading ...

More News

Smartphone users are drowning from “app overload”

Apps on Smartphone

Abandonment rates for smartphone apps are surging because there is just too much choice.

Hlaudi Motsoeneng to remain at SABC

SABC logo black white

Former SABC chief operating officer (COO) Hlaudi Motsoeneng will remain an employee at the public broadcaster

Cell C launches aggressively priced contract packages, with up to R10,000 cash back

Cell C logo on blue

Cell C has launched several new contract packages in its Pinnacle suite, offering customers better value-for-money and up to R10,000 cash back.

Smartphone penetration in South Africa hits major milestone

Smartphones on table

Samsung has announced that South Africa’s smartphone penetration has passed a major milestone.

Free MyBroadband Newsletter
×