CVE-2015-7547: critical bug in libc
Warren Block
wblock at wonkity.com
Wed Feb 17 14:19:09 UTC 2016
On Wed, 17 Feb 2016, Kurt Jaeger wrote:
> Hi!
>
>> The project that's vulnerable is called "glibc", not "libc". The BSDs
>> don't use glibc, so the phrase "nothing to see here" applies. glibc
>> isn't even available in FreeBSD's ports tree.
>>
>> TL;DR: FreeBSD is not affected by CVE-2015-7547.
What about software that uses emulators/linux_base?
> A short note on the www.freebsd.org website would probably be helpful,
> as this case will produce a lot of noise.
Maybe a short article like we did for leap seconds?
https://www.freebsd.org/doc/en_US.ISO8859-1/articles/leap-seconds/article.html
I can help with that.
More information about the freebsd-current
mailing list