RedHat: Moderate: dhcp security update
Summary
Summary
The dhcp package provides the ISC Dynamic Host Configuration Protocol (DHCP) server and relay agent, dhcpd. DHCP is a protocol that allows devices to get their own network configuration information from a server. A bug was found in the way dhcpd logs error messages. A malicious DNS server could send a carefully crafted DNS reply and cause dhcpd to crash or possibly execute arbitrary code. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0446 to this issue. All users of dhcp should upgrade to this updated package, which contains a backported patch and is not vulnerable to this issue.
Solution
Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:
up2date
For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:
http://www.redhat.com/docs/manuals/enterprise/
5. Bug IDs fixed (http://bugzilla.redhat.com/):
149513 - CAN-2004-1006 dhcp string format issue
6. RPMs required:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1:
SRPMS:
927826387feaf4ae2adde7202a94379e dhcp-2.0pl5-9.src.rpm
i386:
0eb5f32af8caf92da9b1b9cb9a06d690 dhcp-2.0pl5-9.i386.rpm
ia64:
aea9d86d108f3e113816073c60cf9d67 dhcp-2.0pl5-9.ia64.rpm
Red Hat Linux Advanced Workstation 2.1:
SRPMS:
927826387feaf4ae2adde7202a94379e dhcp-2.0pl5-9.src.rpm
ia64:
aea9d86d108f3e113816073c60cf9d67 dhcp-2.0pl5-9.ia64.rpm
Red Hat Enterprise Linux ES version 2.1:
SRPMS:
927826387feaf4ae2adde7202a94379e dhcp-2.0pl5-9.src.rpm
i386:
0eb5f32af8caf92da9b1b9cb9a06d690 dhcp-2.0pl5-9.i386.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://www.redhat.com/security/team/key/#package
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1006
Package List
Topic
Topic
Relevant Releases Architectures
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Bugs Fixed