Mitigate CVE-2015-7547 Logjam vulnerability for Connect-It

  • KM02265035
  • 26-Apr-2016
  • 26-Apr-2016

Summary

The Linux GNU C library (glibc) exposes new vulnerabilities as described in CVE-2015-7547. HPE has investigated the CVE-2015-7547 in relation to HPE Asset Manager and this document provides the required actions that must be performed to mitigate this vulnerability.

Question

The Linux GNU C library (glibc) exposes new vulnerabilities as described in CVE-2015-7547.
The glibc DNS client side resolver is vulnerable to a stack-based buffer overflow when the getaddrinfo library function is used.
Software using this function may be exploited with attacker-controlled domain names, attacker-controlled DNS servers, or through a man-in-the-middle attack.
HPE has investigated the CVE-2015-7547 in relation to HPE Asset Manager and this document provides the required actions that must be performed to mitigate this vulnerability.
 
For detailed information about this vulnerability and how to mitigate it for Connect-IT, see the attached PDF document.