Samba & GHOST vulnerability

Simo simo at
Mon Feb 16 08:02:58 MST 2015

On Wed, 2015-02-11 at 13:06 +0000, Moti Avrahami wrote:
> Hi
> We want to know whether the SAMBA is vulnerable to the GHOST (glibc) vulnerability - CVE-2015-0235.
> We are using SAMBA as a 3rd party for a CIFS implementation product.
> We'll kindly appreciate your quick answer.

Hi Moti,
we haven't done any assessment of glibc's GHOST vulnerability related to
Samba runs on a variety of platforms and not all of them have this
vulnerability to start with (non-glibc, newer glibc, etc.).

We suggest you follow best practices and jut make sure you use a libc
that is not affected.


Simo Sorce

More information about the samba-technical mailing list