[openssl-users] Is openssl a vector of exploit for Qualys Security Advisory CVE-2015-0235 - GHOST: glibc gethostbyname ?

Salz, Rich rsalz at akamai.com
Fri Jan 30 21:46:46 UTC 2015

Previous message: [openssl-users] Is openssl a vector of exploit for Qualys Security Advisory CVE-2015-0235 - GHOST: glibc gethostbyname ?
Next message: [openssl-users] Is openssl a vector of exploit for Qualys Security Advisory CVE-2015-0235 - GHOST: glibc gethostbyname ?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> So it look like only direct use of BIO_gethostbyname can cause issues and
> openssl does not rely on obsolete gethostbyname if it can use alternate
> getaddrinfo.
> 
> I would be happy to receive any comment on that.


Okay:  I agree with your review...

Previous message: [openssl-users] Is openssl a vector of exploit for Qualys Security Advisory CVE-2015-0235 - GHOST: glibc gethostbyname ?
Next message: [openssl-users] Is openssl a vector of exploit for Qualys Security Advisory CVE-2015-0235 - GHOST: glibc gethostbyname ?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the openssl-users mailing list