Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 352897 (CVE-2011-0413)

Summary: net-misc/dhcp: DoS (CVE-2011-0413)
Product: Gentoo Security Reporter: Paweł Hajdan, Jr. (RETIRED) <phajdan.jr>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: normal CC: base-system
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: http://www.isc.org/software/dhcp/advisories/cve-2011-0413
Whiteboard: ~3? [ebuild]
Package list:
Runtime testing required: ---

Description Paweł Hajdan, Jr. (RETIRED) gentoo-dev 2011-01-27 07:26:34 UTC 
CVE: CVE-2011-0413
CERT: VU#686084
Posting date: 26 Jan 2011
Program Impacted: DHCP
Versions affected:  4.0.x-4.2.x
Severity:  Medium
Exploitable:  remotely
Description: 
When the DHCPv6 server code processes a message for an address that was previously declined and internally tagged as abandoned it can trigger an assert failure resulting in the server crashing. This could be used to crash DHCPv6 servers remotely. This issue only affects DHCPv6 servers. DHCPv4 servers are unaffected.

Solution: 
Upgrade to 4.1.2-P1, 4.1-ESV-R1, or 4.2.1b1

http://www.isc.org/software/dhcp/advisories/cve-2011-0413
https://bugzilla.redhat.com/show_bug.cgi?id=672755
Comment 1 Paweł Hajdan, Jr. (RETIRED) gentoo-dev 2011-01-27 07:29:04 UTC 
It's not obvious whether the crash is exploitable, so assuming it is. The vulnerability is present only in 4.x series, that are still hard masked.
Comment 2 Paweł Hajdan, Jr. (RETIRED) gentoo-dev 2011-01-28 07:08:29 UTC 
Based on http://secunia.com/advisories/43006/ it's only DoS.
Comment 3 SpanKY gentoo-dev 2011-03-05 23:57:46 UTC 
dhcp-4.2.1 now in the tree and all other dhcp-4.x ebuilds punted.  since this
is still masked, i'll close out the bug.