Описание
Security update for dhcp
This update for dhcp fixes several issues.
This security issue was fixed:
- CVE-2017-3144: OMAPI code didn't free socket descriptors when empty message is received allowing DoS (bsc#1076119)
This non-security issue was fixed:
- Enhance dhclient-script to handle static route updates. (bsc#1023415)
Список пакетов
SUSE Linux Enterprise Server 11 SP4
dhcp-4.2.4.P2-0.28.5.3
dhcp-client-4.2.4.P2-0.28.5.3
dhcp-relay-4.2.4.P2-0.28.5.3
dhcp-server-4.2.4.P2-0.28.5.3
SUSE Linux Enterprise Server for SAP Applications 11 SP4
dhcp-4.2.4.P2-0.28.5.3
dhcp-client-4.2.4.P2-0.28.5.3
dhcp-relay-4.2.4.P2-0.28.5.3
dhcp-server-4.2.4.P2-0.28.5.3
SUSE Linux Enterprise Software Development Kit 11 SP4
dhcp-devel-4.2.4.P2-0.28.5.3
Ссылки
- Link for SUSE-SU-2018:0444-1
- E-Mail link for SUSE-SU-2018:0444-1
- SUSE Security Ratings
- SUSE Bug 1023415
- SUSE Bug 1076119
- SUSE CVE CVE-2017-3144 page
Описание
A vulnerability stemming from failure to properly clean up closed OMAPI connections can lead to exhaustion of the pool of socket descriptors available to the DHCP server. Affects ISC DHCP 4.1.0 to 4.1-ESV-R15, 4.2.0 to 4.2.8, 4.3.0 to 4.3.6. Older versions may also be affected but are well beyond their end-of-life (EOL). Releases prior to 4.1.0 have not been tested.
Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:dhcp-4.2.4.P2-0.28.5.3
SUSE Linux Enterprise Server 11 SP4:dhcp-client-4.2.4.P2-0.28.5.3
SUSE Linux Enterprise Server 11 SP4:dhcp-relay-4.2.4.P2-0.28.5.3
SUSE Linux Enterprise Server 11 SP4:dhcp-server-4.2.4.P2-0.28.5.3
Ссылки
- CVE-2017-3144
- SUSE Bug 1076118
- SUSE Bug 1076119