Security update for wicked
This update for wicked fixes the following issues:
- CVE-2019-18902: Fixed a use-after-free when receiving invalid DHCP6 client options (bsc#1160903).
- CVE-2020-7216: Fixed a potential denial of service via a memory leak when processing packets with missing message type option in DHCP4 (bsc#1160905).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
-
Submitted by
wicked maintainers (wicked-maintainers)
Fixed bugs
bnc#1160905
VUL-1: CVE-2020-7216: wicked: memory leak in DHCP4 when processing packets with missing message type option
bnc#1160903
VUL-0: CVE-2019-18902: wicked: Use-after-free when receiving invalid DHCP6 client options
