Very detailed article from Dan Kaminsky who is a well-known security researcher, black hat speaker and has special interests in DNS security. This article discusses the recent glibc vulnerability (CVE-2015-7547) and some of the possible attack vectors including mitigation strategies.
I particularly share the view in the last couple of paragraphs where Dan talks about the importance on how we as an industry need to ensure our focus should be around maintainability of platforms and software services instead of always being so concerned about spying threats.
Link to article below – please check it out!
Source: A Skeleton Key of Unknown Strength