dhcp 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.
문서번호 : 1250508484
업데이트 : 2009.08.17
상세내용
- 3.0.1-65.1 security update
. CVE-2009-0692
Stack-based buffer overflow in the script_write_params method in
client/dhclient.c in ISC DHCP dhclient 4.1 before 4.1.0p1, 4.0
before 4.0.1p1, 3.1 before 3.1.2p1, 3.0, and 2.0 allows remote
DHCP servers to execute arbitrary code via a crafted subnet-mask
option.
- Skip checksum check on local packets so dhcpd runs correctly in Xen guests
Resolves: rhbz#238051
- Fix dhclient man page typos
Resolves: rhbz#233071
- Updated dhcrelay init script to conform to script guidelines
Resolves: rhbz#237982
- Updated dhcpd init script to conform to script guidelines
Resolves: rhbz#237984
- Fix 64-bit dhclient problems parsing time values in lease files
Resolves: rhbz#447356
- Man page typo fixes
Resolves: rhbz#447889
- Validate port numbers for dhclient, dhcpd, and dhcrelay to ensure
that are within the correct range
Resolves: rhbz#438149
- Reclaim abandoned leases when free leases are available
Resolves: rhbz#445457
- Handle signed port numbers on '-p' command line switch
Resolves: rhbz#438149
Autoupdates 지원 : Packages System
pkgadd -F "dhcp*"
update 패키지
RPMS :
. dhcp-3.0.1-65.el4_8.1.i686.rpm
. dhcp-devel-3.0.1-65.el4_8.1.i686.rpm
. dhcp-relay-3.0.1-65.el4_8.1.i686.rpm
SRPMS :
. dhcp-3.0.1-65.el4_8.1.src.rpm
참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0692
|