openSUSE Security Update: Fixing a crash in ISC DHCP via dhcpv6 packets (CVE-2010-3611) and a crash in dhcrelay. ______________________________________________________________________________
Announcement ID: openSUSE-SU-test-2010:36899-1 Rating: moderate References: #650902 Cross-References: CVE-2010-3611 Affected Products: openSUSE 11.3 ______________________________________________________________________________
An update that fixes one vulnerability is now available.
ISC DHCP can be crashed with a single dhcpv6 packet. CVE-2010-3611 has been assigned to this issue. Additionally a dhcrelay crash when receiving packets on interfaces without assigned IPv4 address has been fixed as well as an infinite loop in dhcpd.
To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product:
- openSUSE 11.3:
zypper in -t patch dhcp-3484
To bring your system up-to-date, use "zypper patch".
- openSUSE 11.3 (i586 x86_64):
dhcp-4.1.1.P1-4.3.1 dhcp-client-4.1.1.P1-4.3.1 dhcp-devel-4.1.1.P1-4.3.1 dhcp-doc-4.1.1.P1-4.3.1 dhcp-relay-4.1.1.P1-4.3.1 dhcp-server-4.1.1.P1-4.3.1