Re: [Tails-dev] Is Tails affected by the CVE-2015-7547 glibc…

Diese Nachricht ist Teil des folgenden Threads:
MDer komplette Thread sortiert nach Datum
Mco am <-
MJurre van Bergen am ->
Nachricht löschen

Nachricht beantworten
Autor: intrigeri
Datum:  
To: The Tails public development discussion list
Betreff: Re: [Tails-dev] Is Tails affected by the CVE-2015-7547 glibc getaddrinfo() vulnerability?
Hi,

my understanding is that clients that use Tor SOCKS port for name
resolution are fine.

For clients who use the DNSPort, it's not clear to me if an
attacker-controlled payload can make it's way from the exit node being
used for the name resolution to the client. Has anyone looked
into this?

Cheers,
--
intrigeri

Diese Nachricht wurde auf der folgenden Mailing-List gepostet:
tails-dev
Mailing-List-Info | Nachrichten um die Zeit		<-[Tails-dev] [Tails - Feature #10972] Port Tails to ARM platformsRe: [Tails-dev] Is Tails affected by the CVE-2015-7547 glibc getaddrinfo() vulnerability?->
lists.autistici.org administriert von postmasterLurker (Version 2.3)