GHOST Vulnerability (glibc)

I searched the forums, but found nothing talking about the GHOST Vulnerability found in a lot of the RedHat, CentOS, Ubuntu, etc variants of Linux. Sorry, if I missed the topic somehow.

We have Asterisk running on CentOS 5.9 and I keep hearing about the GHOST Vulnerability (glibc). Our glibc version is 2.5-107 and it is my understanding that this is one of the versions that is vulnerable. Are we at risk? If yes, how do we upgrade to a version of glibc that doesn’t have the vulnerability?

Thx in advance.

As you mentioned, the vulnerability is an OS(CentOS) issue not an application issue(Asterisk). So its up to you or your administrator to update the kibrary in your system.