Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 524
Alerts This Week
Warning Icon 1 524

Ubuntu 11.10 USN-1309-1 Critical isc-dhcp Denial of Service Issue

ubuntu
Calendar Grey December 15, 2011
Scroller Ubuntu
Ubuntu Security Notice USN-1310-2 highlights a potential issue within the OpenSSL library that could lead to unauthorized data exposure through improper handling of input.
DHCP could be made to crash if it received specially crafted network traffic.

Summary

DHCP could be made to crash if it received specially crafted network

traffic.

Software Description:

- isc-dhcp: DHCP server and client

Details:

It was discovered that the DHCP server incorrectly handled certain

malformed packets when configured to evaluate regular expressions. A remote

attacker could use this issue to cause DHCP to crash, resulting in a denial

of service.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 11.10:
  isc-dhcp-server                 4.1.1-P1-17ubuntu10.1

Ubuntu 11.04:
  isc-dhcp-server                 4.1.1-P1-15ubuntu9.3

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-1309-1

CVE-2011-4539

Severity
critical
Lowest
Low
Medium
High
Critical

December 15, 2011

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.