Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Ubuntu 21.04: USN-4969-3 Moderate: isc-dhcp DoS Regression Issue

ubuntu
Calendar Grey June 7, 2021
Dist Ubuntu Esm H88
This revision resolves a significant problem in isc-dhcp where the configuration files were being improperly denied, addressing an issue that emerged due to prior changes.
USN-4969-1 introduced a regression in DHCP.

Summary

USN-4969-1 introduced a regression in DHCP.

Software Description:

- isc-dhcp: DHCP server and client

Details:

USN-4969-1 fixed a vulnerability in DHCP. The package for Ubuntu 21.04

introduced a regression causing it to reject certain valid configuration

files. This update fixes the problem.

We apologize for the inconvenience.

Original advisory details:

Jon Franklin and Pawel Wieczorkiewicz discovered that DHCP incorrectly

handled lease file parsing. A remote attacker could possibly use this issue

to cause DHCP to crash, resulting in a denial of service.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 21.04:
  isc-dhcp-client                 4.4.1-2.2ubuntu6.2
  isc-dhcp-server                 4.4.1-2.2ubuntu6.2

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-4969-1

https://bugs.launchpad.net/ubuntu/+source/isc-dhcp/+bug/1930917

Severity
important
Lowest
Low
Medium
High
Critical

June 07, 2021

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here