dhcp security update
A rogue dhcp server could instruct clients to use a host
name that contains shell meta characters. Since many
scripts in the system do not expect unusal characters in
the system's host name the dhcp client needs to sanitize
the host name offered by the server (CVE-2011-0997).
-
Submitted by
Adrian Schröter (adrianSuSE)
- Version 4313
Fixed bugs
bnc#675052
VUL-0: CVE-2011-0997: dhcp-client / dhcpcd: remote/local root hole via rogue hostname
bnc#680298
OpenSUSE 11.4 DHCP Server OMAPI bug
bnc#673792
dhclient from dhcp-client package may incorrectly apply set default route and set hostname settings
bnc#668194
dhcp client not working properly in Xen domU due to partial checksum offload
