OVMSA-2016-0058 - dhcp security update
| Type: | SECURITY |
| Severity: | NA |
| Release Date: | 2016-06-20 |
Description
[12:3.0.5-33]
- exit(2) after sending DHCPDECLINE
when dhclient has been started with '-1' (RHBZ #756490)
[12:3.0.5-32]
- An error in the handling of malformed client identifiers can
cause a denial-of-service condition in affected servers. (CVE-2012-3571, #843125)
[12:3.0.5-31]
- Propagate libdhcp timeout to internal timeout_arg (RHBZ #736515)
[12:3.0.5-30]
- A pair of defects cause the server to halt upon processing certain packets
(CVE-2011-2748, CVE-2011-2749, #729881)
[12:3.0.5-29]
- dhclient.conf(5), dhclient(8) mention that interface-mtu option
is also requested by default (RHBZ #694264)
[12:3.0.5-28]
- Better fix for CVE-2011-0997: making domain-name check more lenient (RHBZ #690577)
- dhclient requests interface-mtu option by default (RHBZ #694264)
[12:3.0.5-27]
- dhclient.conf(5) fix (RHBZ #585855)
- Make dhcpd init script LSB compliant (RHBZ #610128)
- Use PID for seeding the random number generator in dhclient (RHBZ #623953)
- Add DHCRELAYARGS variable to /etc/sysconfig/dhcrelay (RHBZ #624965)
- 'lease imbalance' messages are not logged unless rebalance
was actually attempted (RHBZ #661939)
- Explicitly clear the ARP cache and flush all addresses & routes
instead of bringing the interface down (RHBZ #685048)
[12:3.0.5-26]
- IPoIB support (RHBZ #660679)
[12:3.0.5-25]
- dhclient: insufficient sanitization of certain DHCP response values
(CVE-2011-0997, #690577)
[12:3.0.5-24]
- A partner-down failover server no longer emits 'peer holds all free leases'
if it is able to newly-allocate one of the peer's leases. (RHBZ #610219)
- The server's 'by client-id' and 'by hardware address' hash table lists
are now sorted according to the preference to re-allocate that lease to
returning clients. This should eliminate pool starvation problems
arising when 'INIT' clients were given new leases rather than presently
active ones. (RHBZ #615995)
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle VM 3.2 (x86_64) | dhcp-3.0.5-33.el5_9.src.rpm | 67e6d74942ef009ed18195a7de497593 | OVMSA-2018-0042 |
| dhclient-3.0.5-33.el5_9.x86_64.rpm | 31278d5ce6aefc9cd1041e0749a93320 | OVMSA-2018-0042 |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
