Xerox Security Bulletin XRX15-002 V1.0 (PDF 130.8K)

glibc “Ghost” Vulnerability

A vulnerability has been discovered in the glibc library software that interacts with the Domain Name System (DNS). This vulnerability can allow attackers to remotely execute malicious code on a target system. A patch was issued two years ago but most Linux versions used in production systems remained unprotected. Patching requires a system restart so some servers may remain vulnerable for some time to come.

A document has been created to show Xerox product vulnerability which can be veiwed at the Xerox Security Site.