glibc “Ghost†Vulnerability
v1.0
02/09/15
Background
A vulnerability has been discovered in the glibc library software that interacts with the Domain Name System (DNS). This vulnerability can allow attackers to remotely execute malicious code on a target system. A patch was issued two years ago but most Linux versions used in production systems remained unprotected. Patching requires a system restart so some servers may remain vulnerable for some time to come.
A document has been created to show Xerox product vulnerability which can be veiwed at the Xerox Security Site.