Synopsis: Moderate: dhcp security update
Issue Date: 2011-08-15
CVE Numbers: CVE-2011-2748
CVE-2011-2749
—
The Dynamic Host Configuration Protocol (DHCP) is a protocol that allows
individual devices on an IP network to get their own network configuration
information, including an IP address, a subnet mask, and a broadcast
address.
Two denial of service flaws were found in the way the dhcpd daemon handled
certain incomplete request packets. A remote attacker could use these flaws
to crash dhcpd via a specially-crafted request. (CVE-2011-2748,
CVE-2011-2749)
Users of DHCP should upgrade to these updated packages, which contain a
backported patch to correct these issues. After installing this update, all
DHCP servers will be restarted automatically.
—
SL4
x86_64
dhclient-3.0.1-68.el4.x86_64.rpm
dhcp-3.0.1-68.el4.x86_64.rpm
dhcp-devel-3.0.1-68.el4.x86_64.rpm
i386
dhclient-3.0.1-68.el4.i386.rpm
dhcp-3.0.1-68.el4.i386.rpm
dhcp-devel-3.0.1-68.el4.i386.rpm
SL5
x86_64
dhclient-3.0.5-29.el5_7.1.x86_64.rpm
dhcp-3.0.5-29.el5_7.1.x86_64.rpm
dhcp-devel-3.0.5-29.el5_7.1.i386.rpm
dhcp-devel-3.0.5-29.el5_7.1.x86_64.rpm
libdhcp4client-3.0.5-29.el5_7.1.i386.rpm
libdhcp4client-3.0.5-29.el5_7.1.x86_64.rpm
libdhcp4client-devel-3.0.5-29.el5_7.1.i386.rpm
libdhcp4client-devel-3.0.5-29.el5_7.1.x86_64.rpm
i386
dhclient-3.0.5-29.el5_7.1.i386.rpm
dhcp-3.0.5-29.el5_7.1.i386.rpm
dhcp-devel-3.0.5-29.el5_7.1.i386.rpm
libdhcp4client-3.0.5-29.el5_7.1.i386.rpm
libdhcp4client-devel-3.0.5-29.el5_7.1.i386.rpm
SL6
x86_64
dhclient-4.1.1-19.P1.el6_1.1.x86_64.rpm
dhcp-4.1.1-19.P1.el6_1.1.x86_64.rpm
dhcp-devel-4.1.1-19.P1.el6_1.1.i686.rpm
dhcp-devel-4.1.1-19.P1.el6_1.1.x86_64.rpm
i386
dhclient-4.1.1-19.P1.el6_1.1.i686.rpm
dhcp-4.1.1-19.P1.el6_1.1.i686.rpm
dhcp-devel-4.1.1-19.P1.el6_1.1.i686.rpm
– Scientific Linux Development Team
