{"id":477344,"date":"2023-08-09T09:11:34","date_gmt":"2023-08-09T09:11:34","guid":{"rendered":""},"modified":"2023-09-05T11:14:32","modified_gmt":"2023-09-05T11:14:32","slug":"ghost-bug","status":"publish","type":"wiki","link":"https:\/\/oneproxy.pro\/jp\/wiki\/ghost-bug\/","title":{"rendered":"\u30b4\u30fc\u30b9\u30c8\u30d0\u30b0"},"content":{"rendered":"

GHOST \u30d0\u30b0\u306f\u3001\u591a\u304f\u306e Linux \u30d9\u30fc\u30b9\u306e\u30aa\u30da\u30ec\u30fc\u30c6\u30a3\u30f3\u30b0 \u30b7\u30b9\u30c6\u30e0\u306e\u4e3b\u8981\u30b3\u30f3\u30dd\u30fc\u30cd\u30f3\u30c8\u3067\u3042\u308b GNU C \u30e9\u30a4\u30d6\u30e9\u30ea (glibc) \u306e\u91cd\u5927\u306a\u8106\u5f31\u6027\u3067\u3059\u3002\u3053\u306e\u30d0\u30b0\u306f 2015 \u5e74\u521d\u982d\u306b\u767a\u898b\u3055\u308c\u3001\u5f71\u97ff\u3092\u53d7\u3051\u308b\u30b7\u30b9\u30c6\u30e0\u3067\u30ea\u30e2\u30fc\u30c8 \u30b3\u30fc\u30c9\u5b9f\u884c\u3092\u5f15\u304d\u8d77\u3053\u3059\u53ef\u80fd\u6027\u304c\u3042\u308b\u305f\u3081\u3001\u3059\u3050\u306b\u6ce8\u76ee\u3092\u96c6\u3081\u307e\u3057\u305f\u3002\u3053\u306e\u30d0\u30b0\u306f\u3001\u30d0\u30c3\u30d5\u30a1 \u30aa\u30fc\u30d0\u30fc\u30d5\u30ed\u30fc\u306e\u6b20\u9665\u304c\u3042\u308b\u3053\u3068\u304c\u5224\u660e\u3057\u305f GetHOST \u95a2\u6570 (\u3057\u305f\u304c\u3063\u3066 GHOST) \u3092\u60aa\u7528\u3059\u308b\u3053\u3068\u304b\u3089\u305d\u306e\u540d\u524d\u304c\u4ed8\u3051\u3089\u308c\u307e\u3057\u305f\u3002<\/p>\n

GHOST\u30d0\u30b0\u306e\u8d77\u6e90\u3068\u305d\u306e\u6700\u521d\u306e\u8a00\u53ca\u306e\u6b74\u53f2<\/h2>\n

GHOST \u30d0\u30b0\u306f\u30012015 \u5e74 1 \u6708 27 \u65e5\u306b\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u4f1a\u793e Qualys \u306e\u7814\u7a76\u8005\u306b\u3088\u3063\u3066\u521d\u3081\u3066\u7279\u5b9a\u3055\u308c\u307e\u3057\u305f\u3002Qualys \u30c1\u30fc\u30e0\u306f\u30012015 \u5e74 1 \u6708 27 \u65e5\u306b\u516c\u8868\u3059\u308b\u524d\u306b\u3001glibc \u306e\u30e1\u30f3\u30c6\u30ca\u30fc\u3068\u56fd\u7acb\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u304a\u3088\u3073\u901a\u4fe1\u7d71\u5408\u30bb\u30f3\u30bf\u30fc (NCCIC) \u306b\u8cac\u4efb\u3092\u6301\u3063\u3066\u8106\u5f31\u6027\u3092\u958b\u793a\u3057\u307e\u3057\u305f\u3002\u3053\u306e\u8fc5\u901f\u306a\u5bfe\u5fdc\u306b\u3088\u308a\u3001\u30b7\u30b9\u30c6\u30e0\u7ba1\u7406\u8005\u3068\u958b\u767a\u8005\u306f\u60c5\u5831\u3092\u5f97\u3066\u3001\u554f\u984c\u306e\u7de9\u548c\u306b\u53d6\u308a\u7d44\u3080\u3053\u3068\u304c\u3067\u304d\u307e\u3057\u305f\u3002<\/p>\n

GHOST\u30d0\u30b0\u306b\u95a2\u3059\u308b\u8a73\u7d30\u60c5\u5831\u3002GHOST\u30d0\u30b0\u306e\u30c8\u30d4\u30c3\u30af\u306e\u62e1\u5f35<\/h2>\n

GHOST \u30d0\u30b0\u306f\u3001\u4e3b\u306b glibc \u30e9\u30a4\u30d6\u30e9\u30ea\u306e __nss_hostname_digits_dots() \u95a2\u6570\u306b\u5b58\u5728\u3059\u308b\u30d0\u30c3\u30d5\u30a1 \u30aa\u30fc\u30d0\u30fc\u30d5\u30ed\u30fc\u306e\u8106\u5f31\u6027\u3067\u3059\u3002\u30d7\u30ed\u30b0\u30e9\u30e0\u304c DNS \u8981\u6c42\u3092\u884c\u3046\u3068\u3001\u3053\u306e\u95a2\u6570\u306f\u30db\u30b9\u30c8\u540d\u89e3\u6c7a\u30d7\u30ed\u30bb\u30b9\u306e\u51e6\u7406\u3092\u62c5\u5f53\u3057\u307e\u3059\u3002\u305f\u3060\u3057\u3001\u5165\u529b\u691c\u8a3c\u304c\u9069\u5207\u3067\u306a\u3044\u305f\u3081\u3001\u30ea\u30e2\u30fc\u30c8\u306e\u653b\u6483\u8005\u304c\u7279\u5225\u306b\u7d30\u5de5\u3057\u305f\u30db\u30b9\u30c8\u540d\u3092\u63d0\u4f9b\u3057\u3066\u30d0\u30c3\u30d5\u30a1 \u30aa\u30fc\u30d0\u30fc\u30d5\u30ed\u30fc\u3092\u5f15\u304d\u8d77\u3053\u3059\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002\u3053\u306e\u30aa\u30fc\u30d0\u30fc\u30d5\u30ed\u30fc\u306b\u3088\u308a\u4efb\u610f\u306e\u30b3\u30fc\u30c9\u304c\u5b9f\u884c\u3055\u308c\u3001\u653b\u6483\u8005\u304c\u5f71\u97ff\u3092\u53d7\u3051\u308b\u30b7\u30b9\u30c6\u30e0\u306b\u4e0d\u6b63\u30a2\u30af\u30bb\u30b9\u3067\u304d\u308b\u3088\u3046\u306b\u306a\u308a\u307e\u3059\u3002<\/p>\n

\u3053\u306e\u8106\u5f31\u6027\u306f\u3001Web \u30b5\u30fc\u30d0\u30fc\u3001\u96fb\u5b50\u30e1\u30fc\u30eb \u30b5\u30fc\u30d0\u30fc\u3001\u305d\u306e\u4ed6\u306e\u91cd\u8981\u306a\u30b5\u30fc\u30d3\u30b9\u3092\u5b9f\u884c\u3057\u3066\u3044\u308b\u30b7\u30b9\u30c6\u30e0\u3092\u542b\u3080\u3001\u5e45\u5e83\u3044 Linux \u30b7\u30b9\u30c6\u30e0\u306b\u5f71\u97ff\u3092\u4e0e\u3048\u308b\u305f\u3081\u3001\u7279\u306b\u5371\u967a\u3067\u3057\u305f\u3002glibc \u306f\u591a\u6570\u306e\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u3067\u4f7f\u7528\u3055\u308c\u308b\u91cd\u8981\u306a\u30e9\u30a4\u30d6\u30e9\u30ea\u3067\u3042\u308b\u305f\u3081\u3001\u3053\u306e\u30d0\u30b0\u306e\u6f5c\u5728\u7684\u306a\u5f71\u97ff\u306f\u751a\u5927\u3067\u3057\u305f\u3002<\/p>\n

GHOST\u30d0\u30b0\u306e\u5185\u90e8\u69cb\u9020\u3002GHOST\u30d0\u30b0\u306e\u4ed5\u7d44\u307f<\/h2>\n

GHOST \u30d0\u30b0\u306e\u5185\u90e8\u69cb\u9020\u3092\u7406\u89e3\u3059\u308b\u306b\u306f\u3001\u6280\u8853\u7684\u306a\u8a73\u7d30\u3092\u8a73\u3057\u304f\u8abf\u3079\u308b\u3053\u3068\u304c\u91cd\u8981\u3067\u3059\u3002\u30d7\u30ed\u30b0\u30e9\u30e0\u304c\u8106\u5f31\u306a __nss_hostname_digits_dots() \u95a2\u6570\u3092\u547c\u3073\u51fa\u3057\u3066\u30db\u30b9\u30c8\u540d\u3092\u89e3\u6c7a\u3059\u308b\u3068\u3001\u95a2\u6570\u306f\u5185\u90e8\u3067 gethostbyname*() \u95a2\u6570\u3092\u547c\u3073\u51fa\u3057\u307e\u3059\u3002\u3053\u306e\u95a2\u6570\u306f\u3001\u30db\u30b9\u30c8\u540d\u304b\u3089 IP \u30a2\u30c9\u30ec\u30b9\u3078\u306e\u89e3\u6c7a\u306b\u4f7f\u7528\u3055\u308c\u308b getaddrinfo() \u30d5\u30a1\u30df\u30ea\u306e\u4e00\u90e8\u3067\u3059\u3002<\/p>\n

\u3053\u306e\u8106\u5f31\u6027\u306f\u3001\u95a2\u6570\u304c\u30db\u30b9\u30c8\u540d\u5185\u306e\u6570\u5024\u3092\u51e6\u7406\u3059\u308b\u65b9\u6cd5\u306b\u8d77\u56e0\u3057\u307e\u3059\u3002\u30db\u30b9\u30c8\u540d\u306b\u6570\u5024\u3068\u30c9\u30c3\u30c8\u304c\u542b\u307e\u308c\u3066\u3044\u308b\u5834\u5408\u3001\u95a2\u6570\u306f\u305d\u308c\u3092\u8aa4\u3063\u3066 IPv4 \u30a2\u30c9\u30ec\u30b9\u3068\u3057\u3066\u89e3\u91c8\u3057\u307e\u3059\u3002\u3053\u308c\u306b\u3088\u308a\u3001\u95a2\u6570\u304c IPv4 \u30a2\u30c9\u30ec\u30b9\u3092\u683c\u7d0d\u3067\u304d\u308b\u307b\u3069\u306e\u5927\u304d\u3055\u306e\u306a\u3044\u30d0\u30c3\u30d5\u30a1\u306b\u683c\u7d0d\u3057\u3088\u3046\u3068\u3059\u308b\u3068\u3001\u30d0\u30c3\u30d5\u30a1 \u30aa\u30fc\u30d0\u30fc\u30d5\u30ed\u30fc\u304c\u767a\u751f\u3057\u307e\u3059\u3002<\/p>\n

\u305d\u306e\u7d50\u679c\u3001\u653b\u6483\u8005\u306f\u60aa\u610f\u306e\u3042\u308b\u30db\u30b9\u30c8\u540d\u3092\u4f5c\u6210\u3057\u3001\u8106\u5f31\u306a\u95a2\u6570\u304c\u96a3\u63a5\u3059\u308b\u30e1\u30e2\u30ea\u4f4d\u7f6e\u3092\u4e0a\u66f8\u304d\u3059\u308b\u3088\u3046\u306b\u3057\u3066\u3001\u4efb\u610f\u306e\u30b3\u30fc\u30c9\u3092\u5b9f\u884c\u3057\u305f\u308a\u30d7\u30ed\u30b0\u30e9\u30e0\u3092\u30af\u30e9\u30c3\u30b7\u30e5\u3055\u305b\u305f\u308a\u3059\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n

GHOST\u30d0\u30b0\u306e\u4e3b\u306a\u7279\u5fb4\u306e\u5206\u6790<\/h2>\n

GHOST \u30d0\u30b0\u306e\u4e3b\u306a\u7279\u5fb4\u306f\u6b21\u306e\u3068\u304a\u308a\u3067\u3059\u3002<\/p>\n

    \n
  1. \n

    \u30d0\u30c3\u30d5\u30a1\u30aa\u30fc\u30d0\u30fc\u30d5\u30ed\u30fc\u306e\u8106\u5f31\u6027<\/strong>GHOST \u30d0\u30b0\u306e\u6839\u672c\u7684\u306a\u554f\u984c\u306f\u3001__nss_hostname_digits_dots() \u95a2\u6570\u5185\u306e\u30d0\u30c3\u30d5\u30a1 \u30aa\u30fc\u30d0\u30fc\u30d5\u30ed\u30fc\u306b\u3042\u308a\u3001\u4e0d\u6b63\u306a\u30b3\u30fc\u30c9\u5b9f\u884c\u3092\u53ef\u80fd\u306b\u3057\u307e\u3059\u3002<\/p>\n<\/li>\n

  2. \n

    \u30ea\u30e2\u30fc\u30c8\u30b3\u30fc\u30c9\u5b9f\u884c<\/strong>\u3053\u306e\u30d0\u30b0\u306f\u30ea\u30e2\u30fc\u30c8\u304b\u3089\u60aa\u7528\u3055\u308c\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u3001\u653b\u6483\u8005\u304c\u9060\u9694\u5730\u304b\u3089\u5f71\u97ff\u3092\u53d7\u3051\u308b\u30b7\u30b9\u30c6\u30e0\u3092\u5236\u5fa1\u3067\u304d\u308b\u305f\u3081\u3001\u6df1\u523b\u306a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u4e0a\u306e\u8105\u5a01\u3068\u306a\u308a\u307e\u3059\u3002<\/p>\n<\/li>\n

  3. \n

    \u5f71\u97ff\u3092\u53d7\u3051\u308b\u30b7\u30b9\u30c6\u30e0\u306e\u5e83\u7bc4\u56f2<\/strong>: \u3053\u306e\u8106\u5f31\u6027\u306f\u3001\u8106\u5f31\u306a glibc \u30e9\u30a4\u30d6\u30e9\u30ea\u3092\u4f7f\u7528\u3059\u308b\u3055\u307e\u3056\u307e\u306a Linux \u30c7\u30a3\u30b9\u30c8\u30ea\u30d3\u30e5\u30fc\u30b7\u30e7\u30f3\u304a\u3088\u3073\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u306b\u5f71\u97ff\u3092\u4e0e\u3048\u307e\u3057\u305f\u3002<\/p>\n<\/li>\n

  4. \n

    \u91cd\u8981\u306a\u30b5\u30fc\u30d3\u30b9\u304c\u5371\u967a\u306b\u3055\u3089\u3055\u308c\u3066\u3044\u308b<\/strong>\u91cd\u8981\u306a\u30b5\u30fc\u30d3\u30b9\u3092\u5b9f\u884c\u3057\u3066\u3044\u308b\u591a\u304f\u306e\u30b5\u30fc\u30d0\u30fc\u304c\u8106\u5f31\u3067\u3042\u308a\u3001\u30aa\u30f3\u30e9\u30a4\u30f3 \u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u306b\u91cd\u5927\u306a\u30ea\u30b9\u30af\u3092\u3082\u305f\u3089\u3057\u307e\u3057\u305f\u3002<\/p>\n<\/li>\n<\/ol>\n

    GHOST\u30d0\u30b0\u306e\u7a2e\u985e<\/h2>\n

    GHOST \u30d0\u30b0\u306b\u306f\u660e\u78ba\u306a\u30d0\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u306f\u3042\u308a\u307e\u305b\u3093\u304c\u3001\u5f71\u97ff\u3092\u53d7\u3051\u308b\u30b7\u30b9\u30c6\u30e0\u3068\u653b\u6483\u8005\u306e\u76ee\u7684\u306b\u3088\u3063\u3066\u5f71\u97ff\u306f\u7570\u306a\u308a\u307e\u3059\u3002\u901a\u5e38\u3001GHOST \u30d0\u30b0\u306b\u306f 1 \u3064\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u306e\u307f\u304c\u3042\u308a\u3001__nss_hostname_digits_dots() \u95a2\u6570\u306e\u30d0\u30c3\u30d5\u30a1 \u30aa\u30fc\u30d0\u30fc\u30d5\u30ed\u30fc\u3092\u7279\u5fb4\u3068\u3057\u307e\u3059\u3002<\/p>\n

    GHOST\u306e\u4f7f\u3044\u65b9\u3001\u30d0\u30b0\u3001\u4f7f\u7528\u4e0a\u306e\u554f\u984c\u3068\u305d\u306e\u89e3\u6c7a\u65b9\u6cd5<\/h2>\n

    GHOST \u30d0\u30b0\u306f\u4e3b\u306b\u3001__nss_hostname_digits_dots() \u95a2\u6570\u306e\u30d0\u30c3\u30d5\u30a1 \u30aa\u30fc\u30d0\u30fc\u30d5\u30ed\u30fc\u3092\u5229\u7528\u3057\u3066 DNS \u30ea\u30af\u30a8\u30b9\u30c8\u3092\u64cd\u4f5c\u3059\u308b\u3053\u3068\u3067\u60aa\u7528\u3055\u308c\u307e\u3057\u305f\u3002\u653b\u6483\u8005\u306f\u8106\u5f31\u306a\u30b7\u30b9\u30c6\u30e0\u3092\u7279\u5b9a\u3059\u308b\u3068\u3001\u60aa\u610f\u306e\u3042\u308b\u30db\u30b9\u30c8\u540d\u3092\u4f5c\u6210\u3057\u3001\u305d\u308c\u3092\u4f7f\u7528\u3057\u3066\u8106\u5f31\u6027\u3092\u8a98\u767a\u3059\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n

    GHOST \u30d0\u30b0\u3092\u89e3\u6c7a\u3059\u308b\u306b\u306f\u3001\u30aa\u30da\u30ec\u30fc\u30c6\u30a3\u30f3\u30b0 \u30b7\u30b9\u30c6\u30e0 \u30d9\u30f3\u30c0\u30fc\u3068\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u958b\u767a\u8005\u306b\u3088\u308b\u8fc5\u901f\u306a\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u304c\u5fc5\u8981\u3067\u3057\u305f\u3002\u8106\u5f31\u6027\u3092\u4fee\u6b63\u3059\u308b\u306b\u306f\u3001\u30d1\u30c3\u30c1\u3092\u9069\u7528\u3057\u305f glibc \u30d0\u30fc\u30b8\u30e7\u30f3\u3092\u7d44\u307f\u8fbc\u3080\u5fc5\u8981\u304c\u3042\u308a\u307e\u3057\u305f\u3002\u30b7\u30b9\u30c6\u30e0\u7ba1\u7406\u8005\u3082\u3001\u30b7\u30b9\u30c6\u30e0\u3092\u66f4\u65b0\u3057\u3001\u9069\u5207\u306a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56\u3092\u5b9f\u88c5\u3059\u308b\u3053\u3068\u3067\u91cd\u8981\u306a\u5f79\u5272\u3092\u679c\u305f\u3057\u307e\u3057\u305f\u3002<\/p>\n

    \u4e3b\u306a\u7279\u5fb4\u3068\u305d\u306e\u4ed6\u306e\u985e\u4f3c\u7528\u8a9e\u3068\u306e\u6bd4\u8f03\u3092\u8868\u3068\u30ea\u30b9\u30c8\u306e\u5f62\u5f0f\u3067\u793a\u3057\u307e\u3059\u3002<\/h2>\n\n\n\n\n\n\n\n\n\n
    \u7279\u6027<\/th>\n\u30b4\u30fc\u30b9\u30c8\u30d0\u30b0<\/th>\n\u30cf\u30fc\u30c8\u30d6\u30ea\u30fc\u30c9<\/th>\n\u7832\u5f3e\u30b7\u30e7\u30c3\u30af<\/th>\n<\/tr>\n<\/thead>\n
    \u8106\u5f31\u6027\u306e\u7a2e\u985e<\/td>\n\u30d0\u30c3\u30d5\u30a1\u30aa\u30fc\u30d0\u30fc\u30d5\u30ed\u30fc<\/td>\n\u60c5\u5831\u6f0f\u6d29\uff08\u30e1\u30e2\u30ea\u30aa\u30fc\u30d0\u30fc\u30ea\u30fc\u30c9\uff09<\/td>\n\u30b3\u30de\u30f3\u30c9\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3<\/td>\n<\/tr>\n
    \u767a\u898b\u306e\u5e74<\/td>\n2015<\/td>\n2014<\/td>\n2014<\/td>\n<\/tr>\n
    \u5f71\u97ff\u3092\u53d7\u3051\u308b\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2<\/td>\nglibc \u30e9\u30a4\u30d6\u30e9\u30ea<\/td>\n\u30aa\u30fc\u30d7\u30f3SSL<\/td>\n\u30d0\u30c3\u30b7\u30e5\u30b7\u30a7\u30eb<\/td>\n<\/tr>\n
    \u5f71\u97ff\u306e\u7bc4\u56f2<\/td>\nLinux\u30d9\u30fc\u30b9\u306e\u30b7\u30b9\u30c6\u30e0<\/td>\nWeb\u30b5\u30fc\u30d0\u30fc\u3001VPN\u3001IoT\u30c7\u30d0\u30a4\u30b9<\/td>\nUnix\u30d9\u30fc\u30b9\u306e\u30b7\u30b9\u30c6\u30e0<\/td>\n<\/tr>\n
    \u30a8\u30af\u30b9\u30d7\u30ed\u30a4\u30c8\u306e\u8907\u96d1\u3055<\/td>\n\u6bd4\u8f03\u7684\u8907\u96d1<\/td>\n\u6bd4\u8f03\u7684\u30b7\u30f3\u30d7\u30eb<\/td>\n\u6bd4\u8f03\u7684\u30b7\u30f3\u30d7\u30eb<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

    GHOST\u30d0\u30b0\u306b\u95a2\u3059\u308b\u4eca\u5f8c\u306e\u5c55\u671b\u3068\u6280\u8853<\/h2>\n

    GHOST \u30d0\u30b0\u306f\u767a\u898b\u3055\u308c\u3066\u4ee5\u6765\u3001\u958b\u767a\u8005\u3084\u30b7\u30b9\u30c6\u30e0\u7ba1\u7406\u8005\u306b\u3068\u3063\u3066\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56\u3092\u512a\u5148\u3057\u3001\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u306e\u66f4\u65b0\u3092\u8fc5\u901f\u306b\u884c\u3046\u305f\u3081\u306e\u6559\u8a13\u3068\u306a\u3063\u3066\u3044\u307e\u3059\u3002\u3053\u306e\u4e8b\u4ef6\u306b\u3088\u308a\u3001\u30b3\u30a2 \u30e9\u30a4\u30d6\u30e9\u30ea\u306e\u76e3\u8996\u304c\u5f37\u5316\u3055\u308c\u3001\u30b3\u30fc\u30c9 \u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u3092\u5411\u4e0a\u3055\u305b\u308b\u53d6\u308a\u7d44\u307f\u304c\u5f37\u5316\u3055\u308c\u307e\u3057\u305f\u3002<\/p>\n

    \u5c06\u6765\u7684\u306b\u306f\u3001\u5805\u7262\u306a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56\u3001\u5b9a\u671f\u7684\u306a\u30b3\u30fc\u30c9\u76e3\u67fb\u3001\u8106\u5f31\u6027\u8a55\u4fa1\u306b\u3055\u3089\u306b\u91cd\u70b9\u304c\u7f6e\u304b\u308c\u308b\u3053\u3068\u304c\u4e88\u60f3\u3055\u308c\u307e\u3059\u3002\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306e\u72b6\u6cc1\u306f\u9032\u5316\u3057\u7d9a\u3051\u3001\u7d44\u7e54\u306f\u65b0\u305f\u306a\u8105\u5a01\u304b\u3089\u8eab\u3092\u5b88\u308b\u305f\u3081\u306b\u8b66\u6212\u3092\u6020\u3089\u305a\u3001\u7a4d\u6975\u7684\u306b\u884c\u52d5\u3059\u308b\u5fc5\u8981\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n

    \u30d7\u30ed\u30ad\u30b7\u30b5\u30fc\u30d0\u30fc\u306e\u4f7f\u7528\u65b9\u6cd5\u3084GHOST\u30d0\u30b0\u3068\u306e\u95a2\u9023<\/h2>\n

    OneProxy \u304c\u63d0\u4f9b\u3059\u308b\u3088\u3046\u306a\u30d7\u30ed\u30ad\u30b7 \u30b5\u30fc\u30d0\u30fc\u306f\u3001GHOST \u30d0\u30b0\u306e\u5f71\u97ff\u3092\u8efd\u6e1b\u3059\u308b\u5f79\u5272\u3092\u679c\u305f\u3057\u307e\u3059\u3002Web \u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u3092\u30d7\u30ed\u30ad\u30b7 \u30b5\u30fc\u30d0\u30fc\u7d4c\u7531\u3067\u30eb\u30fc\u30c6\u30a3\u30f3\u30b0\u3059\u308b\u3053\u3068\u3067\u3001\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u306e\u30b7\u30b9\u30c6\u30e0\u306f\u8106\u5f31\u306a glibc \u30e9\u30a4\u30d6\u30e9\u30ea\u306b\u76f4\u63a5\u3055\u3089\u3055\u308c\u308b\u3053\u3068\u3092\u56de\u907f\u3067\u304d\u307e\u3059\u3002\u30d7\u30ed\u30ad\u30b7\u306f\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u3068\u30b5\u30fc\u30d0\u30fc\u306e\u9593\u306e\u4ef2\u4ecb\u5f79\u3068\u3057\u3066\u6a5f\u80fd\u3057\u3001\u60aa\u610f\u306e\u3042\u308b\u30ea\u30af\u30a8\u30b9\u30c8\u3092\u30d5\u30a3\u30eb\u30bf\u30ea\u30f3\u30b0\u3059\u308b\u3053\u3068\u3067\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u3092\u3055\u3089\u306b\u5f37\u5316\u3057\u307e\u3059\u3002<\/p>\n

    \u305f\u3060\u3057\u3001\u30d7\u30ed\u30ad\u30b7\u306f\u8106\u5f31\u6027\u305d\u306e\u3082\u306e\u3092\u76f4\u63a5\u4fee\u6b63\u3059\u308b\u30bd\u30ea\u30e5\u30fc\u30b7\u30e7\u30f3\u3067\u306f\u306a\u3044\u3053\u3068\u3092\u899a\u3048\u3066\u304a\u304f\u3053\u3068\u304c\u91cd\u8981\u3067\u3059\u3002\u30d7\u30ed\u30ad\u30b7\u306f\u3001GHOST \u30d0\u30b0\u306e\u3088\u3046\u306a\u6f5c\u5728\u7684\u306a\u8105\u5a01\u306b\u5bfe\u3059\u308b\u5305\u62ec\u7684\u306a\u4fdd\u8b77\u3092\u78ba\u5b9f\u306b\u3059\u308b\u305f\u3081\u306b\u3001\u4ed6\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56\u3084\u5b9a\u671f\u7684\u306a\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u66f4\u65b0\u3068\u7d44\u307f\u5408\u308f\u305b\u3066\u4f7f\u7528\u3059\u308b\u5fc5\u8981\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n

    \u95a2\u9023\u30ea\u30f3\u30af<\/h2>\n

    GHOST \u30d0\u30b0\u3068\u305d\u306e\u5f71\u97ff\u306e\u8a73\u7d30\u306b\u3064\u3044\u3066\u306f\u3001\u6b21\u306e\u30ea\u30bd\u30fc\u30b9\u3092\u53c2\u7167\u3057\u3066\u304f\u3060\u3055\u3044\u3002<\/p>\n

      \n
    1. Qualys \u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30a2\u30c9\u30d0\u30a4\u30b6\u30ea: https:\/\/www.qualys.com\/2015\/01\/27\/cve-2015-0235-ghost\/<\/a><\/li>\n
    2. \u56fd\u5bb6\u8106\u5f31\u6027\u30c7\u30fc\u30bf\u30d9\u30fc\u30b9 (NVD) \u30a8\u30f3\u30c8\u30ea: https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2015-0235<\/a><\/li>\n
    3. Linux \u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 \u30d6\u30ed\u30b0: https:\/\/www.linuxsecurity.com\/features\/features\/ghost-cve-2015-0235-the-linux-implementation-of-the-secure-hypertext-transfer-protocol-7252<\/a><\/li>\n<\/ol>\n

      GHOST \u30d0\u30b0\u306e\u3088\u3046\u306a\u6f5c\u5728\u7684\u306a\u8106\u5f31\u6027\u306b\u76f4\u9762\u3057\u3066\u3082\u3001\u5b89\u5168\u306a\u30aa\u30f3\u30e9\u30a4\u30f3 \u30d7\u30ec\u30bc\u30f3\u30b9\u3092\u7dad\u6301\u3059\u308b\u306b\u306f\u3001\u5e38\u306b\u60c5\u5831\u3092\u5165\u624b\u3057\u3001\u30b7\u30b9\u30c6\u30e0\u3092\u8fc5\u901f\u306b\u66f4\u65b0\u3059\u308b\u3053\u3068\u304c\u91cd\u8981\u306a\u30b9\u30c6\u30c3\u30d7\u3067\u3042\u308b\u3053\u3068\u3092\u5fd8\u308c\u306a\u3044\u3067\u304f\u3060\u3055\u3044\u3002<\/p>","protected":false},"featured_media":0,"menu_order":0,"template":"","meta":{"_acf_changed":false,"content-type":"","inline_featured_image":false,"footnotes":""},"class_list":["post-477344","wiki","type-wiki","status-publish","hentry"],"acf":{"faq_title":"Frequently Asked Questions about GHOST Bug: A Comprehensive Analysis<\/mark>","faq_items":[{"question":"What is the GHOST bug?","answer":"

      The GHOST bug is a critical vulnerability in the GNU C Library (glibc) found in many Linux-based operating systems. It was discovered in 2015 and allows attackers to execute arbitrary code remotely.<\/p>"},{"question":"Who discovered the GHOST bug and when was it first mentioned?","answer":"

      The GHOST bug was identified by researchers from Qualys on January 27, 2015. They responsibly disclosed the vulnerability to glibc maintainers and the NCCIC before publicly announcing it.<\/p>"},{"question":"How does the GHOST bug work?","answer":"

      The GHOST bug exploits a buffer overflow in the __nss_hostname_digits_dots() function of glibc. When a program makes a DNS request, this function is called to handle hostname resolution. Attackers can craft a malicious hostname, triggering the overflow and potentially gaining unauthorized access.<\/p>"},{"question":"What are the key features of the GHOST bug?","answer":"

      The key features of the GHOST bug include its buffer overflow vulnerability, remote code execution potential, wide impact on Linux systems, and its threat to critical services like web servers.<\/p>"},{"question":"Are there different types of GHOST bugs?","answer":"

      No, there is only one version of the GHOST bug characterized by the buffer overflow in the __nss_hostname_digits_dots() function.<\/p>"},{"question":"How can the GHOST bug be mitigated?","answer":"

      Mitigating the GHOST bug requires prompt updates from OS vendors and developers. System administrators should update their systems and implement security measures promptly.<\/p>"},{"question":"How does the GHOST bug compare to other vulnerabilities like Heartbleed and Shellshock?","answer":"

      The GHOST bug is a buffer overflow vulnerability, whereas Heartbleed is an information leak and Shellshock is a command injection. Each has different discovery years, affected software, and exploitation complexities.<\/p>"},{"question":"What does the future hold for the GHOST bug and cybersecurity?","answer":"

      The future will bring increased focus on security practices, code audits, and vulnerability assessments to counter emerging threats. Vigilance and proactive measures will remain critical.<\/p>"},{"question":"How can proxy servers be associated with the GHOST bug?","answer":"

      Proxy servers, like those from OneProxy, can help mitigate the impact of the GHOST bug by acting as intermediaries and filtering malicious requests. However, they should complement other security measures and regular updates.<\/p>"},{"question":"Where can I find more information about the GHOST bug?","answer":"

      For more details about the GHOST bug, you can visit the following resources:<\/p>

      1. Qualys Security Advisory: https:\/\/www.qualys.com\/2015\/01\/27\/cve-2015-0235-ghost\/<\/a><\/li>
      2. National Vulnerability Database (NVD) Entry: https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2015-0235<\/a><\/li>
      3. Linux Security Blog: https:\/\/www.linuxsecurity.com\/features\/features\/ghost-cve-2015-0235-the-linux-implementation-of-the-secure-hypertext-transfer-protocol-7252<\/a><\/li><\/ol>"}]},"_links":{"self":[{"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/wiki\/477344","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/wiki"}],"about":[{"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/types\/wiki"}],"version-history":[{"count":0,"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/wiki\/477344\/revisions"}],"wp:attachment":[{"href":"https:\/\/oneproxy.pro\/jp\/wp-json\/wp\/v2\/media?parent=477344"}],"curies":[{"name":"\u3046\u30fc\u3093","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}