Back to list
rPSA-2009-0041-1 dhclient dhcp libdhcp4client
Mar 12 2009 11:02PM
rPath Update Announcements (announce-noreply rpath com)
rPath Security Advisory: 2009-0041-1
rPath Linux 1
rPath Linux 2
Exposure Level Classification:
Remote Root Deterministic Denial of Service
rPath Issue Tracking System:
Previous versions of the ISC DHCP server were vulnerable to denial
of service or arbitrary code execution attacks via malformed DHCP
packets with a large dhcp-max-message-size that trigger a
stack-based buffer overflow.
Note that rPath Linux 2 is susceptible only to a Denial of Service
in this case, due to the stack protector feature enabled as part of
rPath Linux 2.
Copyright 2009 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html
[ reply ]
Copyright 2010, SecurityFocus