Scientific Linux: CVE-2011-0413 Moderate: dhcp DoS Threat

Mar 04, 2011 •

LinuxSecurity Advisories

1 - 2 min read

Scientific Large Esm H500

Topics Covered

security advisory moderate update DoS dhcp Scientific Linux abandonment

Moderate: dhcp security update

Date: Fri, 4 Mar 2011 14:31:05 -0600
Reply-To: Troy Dawson 
Sender: Security Errata for Scientific Linux

From: Troy Dawson 
Subject: Security ERRATA Moderate: dhcp on SL6.x i386/x86_64
Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it."

Synopsis:	Moderate: dhcp security update
Issue date:	2011-02-15
CVE Names:	CVE-2011-0413

A flaw was found in the way the dhcpd daemon processed certain DHCPv6
messages for addresses that had previously been declined and marked as
abandoned internally. If a remote attacker sent such messages to dhcpd,
it could cause dhcpd to crash due to an assertion failure if it was
running as a DHCPv6 server. (CVE-2011-0413)

After installing this update, all DHCP servers will be restarted
automatically.

SL 6.x

 SRPMS:
dhcp-4.1.1-12.P1.el6_0.2.src.rpm
 i386:
dhclient-4.1.1-12.P1.el6_0.2.i686.rpm
dhcp-4.1.1-12.P1.el6_0.2.i686.rpm
dhcp-devel-4.1.1-12.P1.el6_0.2.i686.rpm
 x86_64:
dhclient-4.1.1-12.P1.el6_0.2.x86_64.rpm
dhcp-4.1.1-12.P1.el6_0.2.x86_64.rpm
dhcp-devel-4.1.1-12.P1.el6_0.2.i686.rpm
dhcp-devel-4.1.1-12.P1.el6_0.2.x86_64.rpm

-Connie Sieh
-Troy Dawson

Powered By

Linux Security Footer

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Your message here