Program code used by the ISC DHCP package to read and parse stored leases has a defect that can be exploited by an attacker to cause one of several undesirable outcomes, depending on the component attacked and the way in which it was compiled. Because of a discrepancy between the code which handles encapsulated option information in leases transmitted "on the wire" and the code which reads and parses lease information after it has been written to disk storage, it is potentially possible for an attacker to deliberately cause a situation where: - dhcpd, while running in DHCPv4 or DHCPv6 mode, or - dhclient, the ISC DHCP client implementation will attempt to read a stored lease that contains option information which will trigger a bug in the option parsing code.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=68fa06b8bd629857ef0dc03a983f6eb299cd6b69 commit 68fa06b8bd629857ef0dc03a983f6eb299cd6b69 Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2021-05-26 21:48:41 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2021-05-26 21:48:53 +0000 net-misc/dhcp: Security bump to version 4.4.2_p1 Bug: https://bugs.gentoo.org/792324 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> net-misc/dhcp/Manifest | 1 + net-misc/dhcp/dhcp-4.4.2_p1.ebuild | 277 +++++++++++++++++++++++++++++++++++++ 2 files changed, 278 insertions(+)
x86 done
amd64 done
arm done
ppc64 done
sparc stable
arm64 done
ppc stable
All arches done, please cleanup.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=70d1fc386a3c3e1b3af78c11aa32438ce6e6d624 commit 70d1fc386a3c3e1b3af78c11aa32438ce6e6d624 Author: Lars Wendler <polynomial-c@gentoo.org> AuthorDate: 2021-06-08 14:09:56 +0000 Commit: Lars Wendler <polynomial-c@gentoo.org> CommitDate: 2021-06-08 14:10:21 +0000 net-misc/dhcp: Security cleanup Bug: https://bugs.gentoo.org/792324 Signed-off-by: Lars Wendler <polynomial-c@gentoo.org> net-misc/dhcp/Manifest | 1 - net-misc/dhcp/dhcp-4.4.2-r3.ebuild | 277 ------------------------------------- 2 files changed, 278 deletions(-)
Thank you!
Unable to check for sanity: > no match for package: net-misc/dhcp-4.4.2_p1
GLSA request filed
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=516446058bf5c37647ce7dfc2922a56aeaee107e commit 516446058bf5c37647ce7dfc2922a56aeaee107e Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2023-05-03 10:32:25 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2023-05-03 10:33:45 +0000 [ GLSA 202305-22 ] ISC DHCP: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/792324 Bug: https://bugs.gentoo.org/875521 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: Sam James <sam@gentoo.org> glsa-202305-22.xml | 45 +++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 45 insertions(+)