A vulnerability that has been assigned the name GHOST (CVE-2015-0235) has recently been detected in Linux systems. Cryptshare Servers are not vulnerable to this problem.

The flaw that has been detected recently in a series of Linux systems can lead to an attacker gaining control over the attacked system. Read more about this security issue here: https://community.qualys.com/blogs/laws-of-vulnerabilities/2015/01/27/the-ghost-vulnerability

Cryptshare Systems are not affected by this security issue.

Cryptshare Hardware Appliances and Cryptshare Virtual Appliances are currently running on an operating system version (openSUSE Linux 12.3) which does have the affected glibc library installed. However the Cryptshare Server Application and the underlying Jetty web server do not use this library so that the vulnerability cannot be exploited on Cryptshare Systems if firewall settings are made according to our guidelines.

We are preparing an update of the openSUSE Linux version to 13.1 where the affected glibc library is fixed to eliminate any residual risk.