Bug 3937 - dhcp missing security update for CVE-2011-4539
Summary: dhcp missing security update for CVE-2011-4539
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: 1
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: QA Team
QA Contact:
URL:
Whiteboard:
Keywords: Security, validated_update
Depends on:
Blocks:
 
Reported: 2011-12-30 03:12 CET by David Walser
Modified: 2012-01-12 11:58 CET (History)
3 users (show)

See Also:
Source RPM: dhcp-4.2.1-0.P1.3.mga1.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2011-12-30 03:12:15 CET 
Mandriva issued this advisory on December 8:
http://lists.mandriva.com/security-announce/2011-12/msg00004.php

It can be fixed by updating to 4.2.3-P1 or with the patch Mandriva used.
Comment 1 Anssi Hannula 2011-12-30 05:54:16 CET 
Suggested advisory:
========================
Updated dhcp packages fix security vulnerabilities in the DHCP server:

dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 does not properly handle regular expressions in dhcpd.conf, which allows remote attackers to cause a denial of service (daemon crash) via a crafted request packet. (CVE-2011-4539)

The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted DHCP (CVE-2011-2748) or BOOTP (CVE-2011-2749) packet.

References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4539
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2748
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2749
http://www.mandriva.com/en/support/security/advisories/?name=MDVSA-2011:182
https://www.isc.org/software/dhcp/advisories/cve-2011-4539
ftp://ftp.isc.org/isc/dhcp/dhcp-4.2.3/dhcp-4.2.3-RELNOTES
========================

Updated packages in core/updates_testing:
=====================
dhcp-client-4.2.1-0.P1.3.1.mga1
dhcp-common-4.2.1-0.P1.3.1.mga1
dhcp-devel-4.2.1-0.P1.3.1.mga1
dhcp-doc-4.2.1-0.P1.3.1.mga1
dhcp-relay-4.2.1-0.P1.3.1.mga1
dhcp-server-4.2.1-0.P1.3.1.mga1

from dhcp-4.2.1-0.P1.3.1.mga1 src.rpm.
=====================

No testcases.

Keywords: (none) => Security
Status: NEW => ASSIGNED
CC: (none) => anssi.hannula
Hardware: i586 => All
Assignee: bugsquad => qa-bugs

Comment 2 David Walser 2012-01-04 16:56:05 CET 
Tested dhcp-server and dhcp-client on i586.  Both work fine.
Comment 3 claire robinson 2012-01-11 17:44:08 CET 
Tested server and client. For server I used dhcping and observed the results in syslog.

Update validated


advisory:
========================
Updated dhcp packages fix security vulnerabilities in the DHCP server:

dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 does not
properly handle regular expressions in dhcpd.conf, which allows remote
attackers to cause a denial of service (daemon crash) via a crafted request
packet. (CVE-2011-4539)

The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and
4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service
(daemon exit) via a crafted DHCP (CVE-2011-2748) or BOOTP (CVE-2011-2749)
packet.

References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4539
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2748
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2749
http://www.mandriva.com/en/support/security/advisories/?name=MDVSA-2011:182
https://www.isc.org/software/dhcp/advisories/cve-2011-4539
ftp://ftp.isc.org/isc/dhcp/dhcp-4.2.3/dhcp-4.2.3-RELNOTES
========================


SRPM: dhcp-4.2.1-0.P1.3.1.mga1.src.rpm

Could sysadmin please push from core/updates_testing to core/updates

Thankyou!

Keywords: (none) => validated_update
CC: (none) => sysadmin-bugs

Comment 4 Thomas Backlund 2012-01-12 11:58:06 CET 
update pushed

Status: ASSIGNED => RESOLVED
CC: (none) => tmb
Resolution: (none) => FIXED
Note You need to log in before you can comment on or make changes to this bug.