drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in dhcp
Name: |
Denial of Service in dhcp |
|
ID: |
FEDORA-2012-15981 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 16 |
|
Datum: |
Di, 23. Oktober 2012, 07:09 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5166 |
|
Applikationen: |
ISC DHCP |
|
Originalnachricht |
Name : dhcp Product : Fedora 16 Version : 4.2.4 Release : 4.P2.fc16 URL : http://isc.org/products/DHCP/ Summary : Dynamic host configuration protocol software Description : DHCP (Dynamic Host Configuration Protocol) is a protocol which allows individual devices on an IP network to get their own network configuration information (IP address, subnetmask, broadcast address, etc.) from a DHCP server. The overall purpose of DHCP is to make it easier to administer a large network.
To use DHCP on your network, install a DHCP service (or relay agent), and on clients run a DHCP client daemon. The dhcp package provides the ISC DHCP service and relay agent.
------------------------------------------------------------------------------- - Update Information:
Update to the latest BIND packages to fix CVE-2012-5166 and incorporate other fixes from upstream. Packages dhcp, bind-dyndb-ldap and dnsperf were rebuilt. ------------------------------------------------------------------------------- - ChangeLog:
* Thu Oct 11 2012 Adam Tkac <atkac redhat com> - 12:4.2.4-4.P2 - rebuild against new bind-libs-lite * Wed Oct 3 2012 Jiri Popelka <jpopelka@redhat.com> - 12:4.2.4-3.P2 - fix paths.patch (#862600) * Wed Sep 26 2012 Jiri Popelka <jpopelka@redhat.com> - 12:4.2.4-2.P2 - dhclient-usage.patch+part of manpages.patch merged with dhclient-options.patch * Mon Sep 24 2012 Jiri Popelka <jpopelka@redhat.com> - 12:4.2.4-1.P2 - 4.2.4-P2 (#786023) * Thu Sep 13 2012 Tomas Hozza <thozza@redhat.com> - 12:4.2.3-12.P2 - fix for CVE-2012-3955 (#856770) * Fri Jul 27 2012 Jiri Popelka <jpopelka@redhat.com> - 12:4.2.3-11.P2 - isc_time_nowplusinterval() is not safe with 64-bit time_t (#662254, #789601) * Wed Jul 25 2012 Tomas Hozza <thozza@redhat.com> - 12:4.2.3-10.P2 - fix for CVE-2012-3570 CVE-2012-3571 and CVE-2012-3954 (#842892) * Mon Jul 9 2012 Tomas Hozza <thozza@redhat.com> - 12:4.2.3-9.P2 - changed the list of %verify on the leases files (#837474) * Wed Feb 22 2012 Jiri Popelka <jpopelka@redhat.com> - 12:4.2.3-8.P2 - don't send log messages to the standard error descriptor by default (#790387) * Tue Feb 7 2012 Jiri Popelka <jpopelka@redhat.com> - 12:4.2.3-7.P2 - dhclient-script: install link-local static routes with correct scope (#787318) * Mon Jan 23 2012 Jiri Popelka <jpopelka@redhat.com> - 12:4.2.3-6.P2 - revert change made in 4.2.3-2 because of failing failover inicialization (#765967) the procedure is now: init lease file, init failover, init PID file, change effective user/group ID - dhclient-script: allow static route with a 0.0.0.0 next-hop address (#769463) * Fri Jan 13 2012 Jiri Popelka <jpopelka@redhat.com> - 12:4.2.3-5.P2 - 4.2.3-P2: fix for CVE-2011-4868 (#781246) * Fri Dec 9 2011 Jiri Popelka <jpopelka@redhat.com> - 12:4.2.3-4.P1 - 4.2.3-P1: fix for CVE-2011-4539 (#765681) ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #864273 - CVE-2012-5166 bind: Specially crafted DNS data can cause a lockup in named https://bugzilla.redhat.com/show_bug.cgi?id=864273 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update dhcp' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|