Описание
Security update for dhcp
This update for dhcp fixes several issues.
This security issue was fixed:
- CVE-2017-3144: OMAPI code didn't free socket descriptors when empty message is received allowing DoS (bsc#1076119).
These non-security issues were fixed:
- Optimized if and when DNS client context and ports are initted (bsc#1073935)
- Relax permission of dhclient-script for libguestfs (bsc#987170)
- Modify dhclient-script to handle static route updates (bsc#1023415).
- Use only the 12 least significant bits of an inbound packet's TCI value as the VLAN ID to fix some packages being wrongly discarded by the Linux packet filter. (bsc#1059061)
Список пакетов
SUSE Linux Enterprise Desktop 12 SP2
dhcp-4.3.3-10.11.1
dhcp-client-4.3.3-10.11.1
SUSE Linux Enterprise Desktop 12 SP3
dhcp-4.3.3-10.11.1
dhcp-client-4.3.3-10.11.1
SUSE Linux Enterprise Server 12 SP2
dhcp-4.3.3-10.11.1
dhcp-client-4.3.3-10.11.1
dhcp-relay-4.3.3-10.11.1
dhcp-server-4.3.3-10.11.1
SUSE Linux Enterprise Server 12 SP3
dhcp-4.3.3-10.11.1
dhcp-client-4.3.3-10.11.1
dhcp-relay-4.3.3-10.11.1
dhcp-server-4.3.3-10.11.1
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
dhcp-4.3.3-10.11.1
dhcp-client-4.3.3-10.11.1
dhcp-relay-4.3.3-10.11.1
dhcp-server-4.3.3-10.11.1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
dhcp-4.3.3-10.11.1
dhcp-client-4.3.3-10.11.1
dhcp-relay-4.3.3-10.11.1
dhcp-server-4.3.3-10.11.1
SUSE Linux Enterprise Server for SAP Applications 12 SP3
dhcp-4.3.3-10.11.1
dhcp-client-4.3.3-10.11.1
dhcp-relay-4.3.3-10.11.1
dhcp-server-4.3.3-10.11.1
SUSE Linux Enterprise Software Development Kit 12 SP2
dhcp-devel-4.3.3-10.11.1
SUSE Linux Enterprise Software Development Kit 12 SP3
dhcp-devel-4.3.3-10.11.1
Ссылки
- Link for SUSE-SU-2018:0532-1
- E-Mail link for SUSE-SU-2018:0532-1
- SUSE Security Ratings
- SUSE Bug 1023415
- SUSE Bug 1059061
- SUSE Bug 1073935
- SUSE Bug 1076119
- SUSE Bug 987170
- SUSE CVE CVE-2017-3144 page
Описание
A vulnerability stemming from failure to properly clean up closed OMAPI connections can lead to exhaustion of the pool of socket descriptors available to the DHCP server. Affects ISC DHCP 4.1.0 to 4.1-ESV-R15, 4.2.0 to 4.2.8, 4.3.0 to 4.3.6. Older versions may also be affected but are well beyond their end-of-life (EOL). Releases prior to 4.1.0 have not been tested.
Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP2:dhcp-4.3.3-10.11.1
SUSE Linux Enterprise Desktop 12 SP2:dhcp-client-4.3.3-10.11.1
SUSE Linux Enterprise Desktop 12 SP3:dhcp-4.3.3-10.11.1
SUSE Linux Enterprise Desktop 12 SP3:dhcp-client-4.3.3-10.11.1
Ссылки
- CVE-2017-3144
- SUSE Bug 1076118
- SUSE Bug 1076119