dhcp: add upstream security fixes - buildroot

diff options

author	Baruch Siach <baruch@tkos.co.il>	2018-03-03 21:43:56 +0200
committer	Peter Korsgaard <peter@korsgaard.com>	2018-03-03 23:26:08 +0100
commit	047cec5993223944d0765468f11aa137d3ade543 (patch)
tree	4b9e5506eb5d122a06e0a5fff8e47890a0b98af6 /support/scripts/brpkgutil.py
parent	00fc361b0a1693e701485ab177e9d12b59652170 (diff)
download	buildroot-047cec5993223944d0765468f11aa137d3ade543.tar.gz buildroot-047cec5993223944d0765468f11aa137d3ade543.zip

dhcp: add upstream security fixes

CVE-2018-5732: The DHCP client incorrectly handled certain malformed responses. A remote attacker could use this issue to cause the DHCP client to crash, resulting in a denial of service, or possibly execute arbitrary code. In the default installation, attackers would be isolated by the dhclient AppArmor profile. CVE-2018-5733: The DHCP server incorrectly handled reference counting. A remote attacker could possibly use this issue to cause the DHCP server to crash, resulting in a denial of service. Both issues are fixed in version 4.4.1. But we are close to release, so backport the fixes instead of bumping version. Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

Diffstat (limited to 'support/scripts/brpkgutil.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: