A critical vulnerability has been found in glibc, the GNU C library. This is affecting all Linux distributions. This flaw gives attackers the ability to execute malicious code on servers, any target system can be controlled without the need of any system credentials. The vulnerability, CVE-2015-0235, has been nicknamed as GHOST because of its relation to the gethostbyname() function.
The vulnerability in the GNU C Library represents a big threat and in some ways it can be compared with the Shellshock and Heartbleed bugs of last year.
Debian 7, Ret Hat Enterprise Linux 6. CentOS 6 & 7 and Ubuntu 12.04 remain unprotected at this moment. The vulnerability also affects Linux programs written in Python, Ruby, and most other languages because they rely on glibc as well.
If you are running a Linux server you should closely monitor your server against the vulnerability and you should also check all available patches. You should also prepare for the unavoidable reboots that will be required after installing the patch.
NOTE 1: Technically it is not needed to reboot your server if you restart all services which are using glibc. Unfortunately there are a lot of services depending on glibc and finding out and restarting those services can be more difficult than rebooting your server.
NOTE 2: If your system is unaffected (like Ubuntu 14.04 for example) you do not have to reboot your server. We advise all our customers to watch the output of the update process and see if glibc is updated before issuing a reboot.
Below you can also find a few Linux distribution commands:
Debian / Ubuntu / Turnkey Linux
sudo apt-get update && sudo apt-get upgrade
sudo yum update
emerge --update glibc
Your feedback is valuable for us and we will reward you for providing your feedback with free monitoring for the 1st year. Your server will be monitored 24/7 x 365. All you need to do is to ...
cPanel WHM/Plus! for Dedicated Servers is now available for 29 euro a month including Resource Monitor. SpamScan and Attracta SEO Tools at free charge (value 21 euro). We have also ...
World Hosting Days 2016
As you may know the World Hosting Days 2...
Scheduled network maintenance on February the 25th, 2016
Dear client, On February the 25th b...
New critical GLibc vulnerability discovered
Googles online security research team ha...
How to use our Auto renewal service in SnelPanel
Remembering when your server needs to be...
Scheduled network maintenance on February the 4th, 2016
Dear client, Our next step in final...
Snelserver.com is one of the most affordable hosting providers while we are using the very latest and most powerful hardware, especially when you consider freebies like a dedicated KVM over IP. We offer the best hosting deals and enable you to use the best operating systems and dedicated servers such as dual core, quad core, dual quad core, hexa core and dual hexa core at very affordable prices.
SnelServer.com requires no contracts because we are confident that you will enjoy our flexible, fast and high performance servers which are completely dedicated to your needs. Hence, we have no obligations; you can cancel your dedicated server simply by not renewing it. This means your server will automatically expire on its expiry date. We only want you to stay because you are satisfied, not because a contract requires you to.
SnelServer.com provides a reliable and easy to implement Application Programming interface (API). Our API allows you to integrate our control panel seamlessly into your own systems. By integrating our control panel you can resell our dedicated servers under your own private brand at prices you want. We allow you to use our infrastructure and at the same time you will have a total control in providing support to your own customers. Get started on integrating our powerful API in to your business and earn money easily.
Here at Snel.com we are not using desktop machines but only the best servers from Supermicro and Dell which are designed to give you the best performance and to provide energy and space efficiency. Supermicro provides innovative and first-to market technologies and their motherboards are quality-built to maximize customer satisfaction. And Dell servers are built to accelerate performance and expandability but also to increase productivity. Our Dell servers perfectly meet to the most common requests and requirements of our customers.