• Home
  • About Us
  • Authors
  • Submit News
  • Contact Us
  • Privacy Policy
  • Sitemap
The Hack Post
  • Hacking News
    • Cyber Crime
  • Cyber Security
  • Technology
    • Internet
  • Entertainment
    • Gaming
  • Business
  • Science / Health
No Result
View All Result
The Hack Post
No Result
View All Result

The glibc DNS Client Issue: Google Online Security Debugging Tools

Connor Stewart by Connor Stewart
February 19, 2016
Google Online Security Blog - The glibc DNS Client Issue - Debugging Tools

Google Online Security Blog - The glibc DNS Client Issue - Debugging Tools

Share on FacebookShare on Twitter

The Staff Security Engineer in this article (Serna) from Google filed a ticket to their supervisor (Stadmeyer) and they spent a good deal of time trying to figure out exactly why their SSH client went faulty before it connected to their host.  They worked on an in-depth analysis of the bug, took a few cracks at hacking it, and eventually exploited the bug into working order.

Through their through crack of the bug, they had learned that the maintainers caught the bug issue last year. Because they didn’t know if the crack had been patched yet, they took time to try and figure out if there was any possible fix before searching the deeper web for more answers. Because the hack was such a sensitive and executable hack, they knew that they had to take more of an effort to control it. They worked through the investigation, patch creation, and testing phases before anyone else on the web had really explored fixing the issue.

If you’re facing this DNS client issue, the patch that they found is available here.

The issue was prevalent in all issues of glibc after version 2.9. While you should still update to prevent security vulnerabilities, the current version of glibc is vulnerable to what the coders call a “stack based buffer overload” when getaddrinfo () is used as a library function. When this happens, servers can be hacked through attacker controlled domains, as well as man-in-the-middle attacks.

Google suggests limiting the response to glibc by mitigating the response sizes that the DNS resolver accepts locally.

“When code crashes unexpectedly, it can be a sign of something much more significant than it appears,” writes Stadmeyer. “Ignore crashes at your peril!”

Tags: glibcglibc DNSglibc DNS Client IssueGoogleGoogle Debugging ToolsGoogle glibc DNSGoogle Online SecuritySecurity Debugging Tools
Connor Stewart

Connor Stewart

Connor is an Editor at The Hack Post.

Next Post
Diagnose Your Bugs Faster Debug Production Apps with Google Cloud

Diagnose Your Bugs Faster: Debug Production Apps with Google Cloud

Latest Articles

Why Living in a Condo is Ideal for Families
news

Why Living in a Condo is Ideal for Families

May 12, 2025
Zen Your Condo Tips for a Tranquil Space
Business

Zen Your Condo: Tips for a Tranquil Space

May 8, 2025
4 Hobbies for Introverts
news

4 Hobbies for Introverts

May 3, 2025
5 Benefits of Living in a Condo for Professionals
news

5 Benefits of Living in a Condo for Professionals

April 22, 2025
Are German Proxies Legal? The Complete 2025 Guide
Technology

Are German Proxies Legal? The Complete 2025 Guide

April 16, 2025
5 Ideas for Your Condo Console Gaming Setup
news

5 Ideas for Your Condo Console Gaming Setup

April 11, 2025
5 Creative Ideas to Level Up Your Condo Gaming Room
news

5 Creative Ideas to Level Up Your Condo Gaming Room

March 30, 2025
6 Helpful Tips when Moving with Your Pet
news

6 Helpful Tips when Moving with Your Pet

March 19, 2025
Enhancing Security Measures for A Seamless Mobile Trading Experience
Technology

Enhancing Security Measures for A Seamless Mobile Trading Experience

March 19, 2025
5 Ways Condos Support Health-Conscious Living
Science / Health

5 Ways Condos Support Health-Conscious Living

March 8, 2025
The Future of Mobile Gaming 5G, Al, and Cloud Inclusion
Entertainment

The Future of Mobile Gaming: 5G, Al, and Cloud Inclusion

February 21, 2025
Leveraging Digital Twins for Cost-Effective Decarbonisation and Avoiding Stranded Assets
Technology

Leveraging Digital Twins for Cost-Effective Decarbonisation and Avoiding Stranded Assets

February 20, 2025
  • Home
  • About Us
  • Authors
  • Submit News
  • Contact Us
  • Privacy Policy
  • Sitemap

The Hack Post © 2019

No Result
View All Result
  • Hacking News
    • Cyber Crime
  • Cyber Security
  • Technology
    • Internet
  • Entertainment
    • Gaming
  • Business
  • Science / Health

The Hack Post © 2019