Bug 17462 - dhcpcd new security issue CVE-2016-1503 and CVE-2016-1504
Summary: dhcpcd new security issue CVE-2016-1503 and CVE-2016-1504
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: 5
Hardware: i586 Linux
Priority: Normal normal
Target Milestone: ---
Assignee: QA Team
QA Contact: Sec team
URL: http://lwn.net/Vulnerabilities/671444/
Whiteboard: advisory MGA5-32-OK MGA5-64-OK
Keywords: validated_update
Depends on:
Blocks:
 
Reported: 2016-01-07 17:20 CET by David Walser
Modified: 2016-01-21 22:39 CET (History)
3 users (show)

See Also:
Source RPM: dhcpcd-6.7.1-1.mga5.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2016-01-07 17:20:24 CET 
Two CVEs have been assigned for bugs fixed upstream in dhcpcd:
http://openwall.com/lists/oss-security/2016/01/07/4

A new release with the fixes is not available yet, but their releases come out fairly frequently, so it shouldn't be long.

Reproducible: 

Steps to Reproduce:
Comment 1 David Walser 2016-01-11 20:33:26 CET 
dhcpcd 6.10.0 has been released, fixing these:
http://roy.marples.name/archives/dhcpcd-discuss/2016/1143.html

URL: (none) => http://lwn.net/Vulnerabilities/671444/

Comment 3 David Walser 2016-01-16 03:25:42 CET 
Updated packages uploaded for Mageia 5 and Cauldron.

Advisory:
========================

Updated dhcpcd packages fix security vulnerabilities:

Possible heap overflow in dhcpcd before 6.10.0 caused by malformed dhcp
responses due to incorrect option length values (CVE-2016-1503).

Possible invalid read in dhcpcd before 6.10.0 caused by malformed dhcp
responses can lead to a crash (CVE-2016-1504).

The dhcpcd package has been updated to version 6.10.0 which fixes these
issues and has several other bug fixes and enhancements.

References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1503
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1504
http://roy.marples.name/archives/dhcpcd-discuss/2015/1001.html
http://roy.marples.name/archives/dhcpcd-discuss/2015/1004.html
http://roy.marples.name/archives/dhcpcd-discuss/2015/1012.html
http://roy.marples.name/archives/dhcpcd-discuss/2015/1018.html
http://roy.marples.name/archives/dhcpcd-discuss/2015/1058.html
http://roy.marples.name/archives/dhcpcd-discuss/2015/1089.html
http://roy.marples.name/archives/dhcpcd-discuss/2015/1093.html
http://roy.marples.name/archives/dhcpcd-discuss/2015/1129.html
http://roy.marples.name/archives/dhcpcd-discuss/2016/1143.html
http://openwall.com/lists/oss-security/2016/01/07/4
========================

Updated packages in core/updates_testing:
========================
dhcpcd-6.10.0-1.mga5

from dhcpcd-6.10.0-1.mga5.src.rpm

Assignee: bugsquad => qa-bugs

Dave Hodgins 2016-01-20 00:26:55 CET

CC: (none) => davidwhodgins
Whiteboard: (none) => advisory

Comment 4 William Kenney 2016-01-21 20:07:08 CET 
In VirtualBox, M5, KDE, 32-bit

Package(s) under test:
dhcpcd

default install of dhcpcd

[root@localhost wilcal]# urpmi dhcpcd
Package dhcpcd-6.7.1-1.mga5.i586 is already installed

MCC -> Network & Internet -> Network Center -> select the Ethernet connection ->
Configure connection -> go to Advanced -> IP settings -> DHCP client -> select dhcpcd
reboot system under test

Network connection successful. LAN & WAN connectivity is confirmed.
Vbox client has been assigned proper LAN IP as expected.

install dhcpcd from updates_testing
reboot system

[root@localhost wilcal]# urpmi dhcpcd
Package dhcpcd-6.10.0-1.mga5.i586 is already installed

Check MCC -> Network & Internet to ensure dhcpcd is still being used.
Network connection successful. LAN & WAN connectivity is confirmed.
Vbox client has been assigned proper LAN IP as expected.

CC: (none) => wilcal.int
Whiteboard: advisory => advisory MGA5-32-OK

Comment 5 William Kenney 2016-01-21 20:22:45 CET 
In VirtualBox, M5, KDE, 64-bit

Package(s) under test:
dhcpcd

default install of dhcpcd

[root@localhost wilcal]# urpmi dhcpcd
Package dhcpcd-6.7.1-1.mga5.x86_64 is already installed

MCC -> Network & Internet -> Network Center -> select the Ethernet connection ->
Configure connection -> go to Advanced -> IP settings -> DHCP client -> select dhcpcd
reboot system under test

Network connection successful. LAN & WAN connectivity is confirmed.
Vbox client has been assigned proper LAN IP as expected.

install dhcpcd from updates_testing
reboot system

[root@localhost wilcal]# urpmi dhcpcd
Package dhcpcd-6.10.0-1.mga5.x86_64 is already installed

Check MCC -> Network & Internet to ensure dhcpcd is still being used.
Network connection successful. LAN & WAN connectivity is confirmed.
Vbox client has been assigned proper LAN IP as expected.

Whiteboard: advisory MGA5-32-OK => advisory MGA5-32-OK MGA5-64-OK

Comment 6 William Kenney 2016-01-21 20:23:18 CET 
This update works fine.
Testing complete for MGA5, 32-bit & 64-bit
Validating the update.
Could someone from the sysadmin team push to updates.
Thanks

Keywords: (none) => validated_update
CC: (none) => sysadmin-bugs

Comment 7 Mageia Robot 2016-01-21 22:39:34 CET 
An update for this issue has been pushed to Mageia Updates repository.

http://advisories.mageia.org/MGASA-2016-0034.html

Status: NEW => RESOLVED
Resolution: (none) => FIXED
Note You need to log in before you can comment on or make changes to this bug.