glibc exploit - update your servers

The recent glibc (well ok technically it was around since last year) has been patched and a new glibc has started circulating from Linux distros.

I'm using CentOS 7 on all my servers and RHEL/CentOS rpm packages have been released as of today. Unfortunately, linode mirrors aren't up-to-date, but you can by-pas the mirrors and hit the main CentOS repository.

2 Replies

The glibc patch is in our CentOS mirrors as of this morning

All nicely patched already.

If a mirror is a bit late to update, you can always modify your /etc/yum.repos.d/ files to bypass mirrors and to hit centos.org directly.

Thanks rmcintosh for letting us know, hopefully everyone will be running some kind of yum-cron to load updates automatically.

PS:

glibc can stay memory resident even after an update if its being used by something and since this is a major (and I MEAN MAJOR) library in Linux, your best bet is to reboot.

Reply

Please enter an answer
Tips:

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Community Code of Conduct