Qualys Security Advisory CVE-2015-0235 ("GHOST")


Qualys reported a vulnerability in gethostbyname() that permits code execution on a server through a buffer overflow attack.

According to our understanding, Cumulocity is not affected by the vulnerability. Our production systems have nevertheless been patched this morning.

Reference: https://www.qualys.com/research/security-advisories/GHOST-CVE-2015-0235.txt

Kind regards,
The Cumulocity support team


Have more questions? Submit a request