Mailinglist Archive: opensuse-updates (41 mails)
| < Previous | Next > |
openSUSE-SU-test-2010:36899-1 (moderate): Fixing a crash in ISC DHCP via dhcpv6 packets (CVE-2010-3611) and a crash in dhcrelay.
- From: opensuse-security@xxxxxxxxxxxx
- Date: Tue, 9 Nov 2010 17:08:20 +0100 (CET)
- Message-id: <20101109160821.0854CBE56@xxxxxxxxxxxxxx>
openSUSE Security Update: Fixing a crash in ISC DHCP via dhcpv6 packets
(CVE-2010-3611) and a crash in dhcrelay.
______________________________________________________________________________
Announcement ID: openSUSE-SU-test-2010:36899-1
Rating: moderate
References: #650902
Cross-References: CVE-2010-3611
Affected Products:
openSUSE 11.3
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
ISC DHCP can be crashed with a single dhcpv6 packet.
CVE-2010-3611 has been assigned to this issue. Additionally
a dhcrelay crash when receiving packets on interfaces
without assigned IPv4 address has been fixed as well as an
infinite loop in dhcpd.
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 11.3:
zypper in -t patch dhcp-3484
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE 11.3 (i586 x86_64):
dhcp-4.1.1.P1-4.3.1
dhcp-client-4.1.1.P1-4.3.1
dhcp-devel-4.1.1.P1-4.3.1
dhcp-doc-4.1.1.P1-4.3.1
dhcp-relay-4.1.1.P1-4.3.1
dhcp-server-4.1.1.P1-4.3.1
References:
http://support.novell.com/security/cve/CVE-2010-3611.html
https://bugzilla.novell.com/650902
(CVE-2010-3611) and a crash in dhcrelay.
______________________________________________________________________________
Announcement ID: openSUSE-SU-test-2010:36899-1
Rating: moderate
References: #650902
Cross-References: CVE-2010-3611
Affected Products:
openSUSE 11.3
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
ISC DHCP can be crashed with a single dhcpv6 packet.
CVE-2010-3611 has been assigned to this issue. Additionally
a dhcrelay crash when receiving packets on interfaces
without assigned IPv4 address has been fixed as well as an
infinite loop in dhcpd.
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 11.3:
zypper in -t patch dhcp-3484
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE 11.3 (i586 x86_64):
dhcp-4.1.1.P1-4.3.1
dhcp-client-4.1.1.P1-4.3.1
dhcp-devel-4.1.1.P1-4.3.1
dhcp-doc-4.1.1.P1-4.3.1
dhcp-relay-4.1.1.P1-4.3.1
dhcp-server-4.1.1.P1-4.3.1
References:
http://support.novell.com/security/cve/CVE-2010-3611.html
https://bugzilla.novell.com/650902
| < Previous | Next > |