Overview

File _patchinfo of Package patchinfo.1901

<patchinfo incident="1901">
  <issue id="960506" tracker="bnc">/sbin/dhclient-script: unable to pre-init requested interface eth0</issue>
  <issue id="956159" tracker="bnc">systemd dhcpd service start fails because LDAP server not ready</issue>
  <issue id="928390" tracker="bnc">dhclient does not provide next-server in SLE 12</issue>
  <issue id="910686" tracker="bnc">Dependency conflict of dhcp-devel with bind-devel package</issue>
  <issue id="912098" tracker="bnc">dhclient with non-running wicked: pretends to run, but silently declines leases</issue>
  <issue id="961305" tracker="bnc">VUL-0: CVE-2015-8605: dhcp: UDP payload length not properly checked enabling DoS</issue>
  <issue id="880984" tracker="bnc">DHCP unable to write to leases unless deleted first</issue>
  <issue id="891961" tracker="bnc">network:dhcp/dhcp: legacy-action build failure</issue>
  <issue id="936923" tracker="bnc">L3-Question: maximum  dhcpd lease duration time not RFC2131 compliant</issue>
  <issue id="919959" tracker="bnc">L3: dhcpd should not report (syslog DHCPOFFER) it has made an offer when it has not</issue>
  <issue id="926159" tracker="bnc">DHCPv6 preferred and valid lifetime logged incorrectly</issue>
  <issue id="947780" tracker="bnc">dhcpd aborts with "Unable to set up timer: out of range"</issue>
  <issue id="CVE-2015-8605" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>ndas</packager>
  <description>
This update for dhcp fixes the following issues:

- CVE-2015-8605: A remote attacker could have used badly formed packets with an invalid IPv4 UDP length field to cause a DHCP server, client, or relay program to terminate abnormally (bsc#961305)

The following bugs were fixed:

- bsc#936923: Improper lease duration checking
- bsc#880984: Integer overflows in the date and time handling code
- bsc#956159: fixed service files to start dhcpd after slapd
- bsc#960506: Improve exit reason and logging when /sbin/dhclient-script is unable to pre-init requested interface
- bsc#947780: DHCP server could abort with "Unable to set up timer: out of range" on very long or infinite timer intervals / lease lifetimes 
- bsc#912098: dhclient could pretend to run while silently declining leases
- bsc#919959: server: Do not log success report before send reported success
- bsc#928390: dhclient dit not expose next-server DHCPv4 option to script
- bsc#926159: DHCP preferrend and valid lifetime would be logged incorrectly
- bsc#910686: Prevent a dependency conflict of dhcp-devel with bind-devel package

The following tracked changes affect the build of the package only:

- bsc#891961: Disabled /sbin/service legacy-action hooks
</description>
  <summary>Security update for dhcp</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places