Re: [Tails-dev] Is Tails affected by the CVE-2015-7547 glibc getaddrinfo() vulnerability?

著者: intrigeri
日付:
To: The Tails public development discussion list
題目: Re: [Tails-dev] Is Tails affected by the CVE-2015-7547 glibc getaddrinfo() vulnerability?

Hi,

my understanding is that clients that use Tor SOCKS port for name
resolution are fine.

For clients who use the DNSPort, it's not clear to me if an
attacker-controlled payload can make it's way from the exit node being
used for the name resolution to the client. Has anyone looked
into this?

Cheers,
--
intrigeri

このメッセージは次のスレッドの一部です:
	日付によるスレッドの仕分け
	co 、
	Jurre van Bergen 、

Re: [Tails-dev] Is Tails affected by the CVE-2015-7547 glibc…