Package "isc-dhcp"

Name: isc-dhcp


This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • ISC DHCP client
  • ISC DHCP client (debugging symbols)
  • Dynamic DNS (DDNS) disabled DHCP client
  • common files used by all the isc-dhcp* packages

Latest version: 4.2.4-7ubuntu12.13
Release: trusty (14.04)
Level: updates
Repository: main


Other versions of "isc-dhcp" in Trusty

Repository Area Version
base main 4.2.4-7ubuntu12
base universe 4.2.4-7ubuntu12
security main 4.2.4-7ubuntu12.12
security universe 4.2.4-7ubuntu12.12
updates universe 4.2.4-7ubuntu12.13

Packages in group

Deleted packages are displayed in grey.


Version: 4.2.4-7ubuntu12.13 2018-03-15 10:07:09 UTC

  isc-dhcp (4.2.4-7ubuntu12.13) trusty; urgency=medium

  * dhclient-script.linux: handle empty case also when waiting for ipv6 link
    local DAD. (LP: #1718568)

 -- Dan Streetman <email address hidden> Fri, 02 Mar 2018 13:17:36 -0500

Source diff to previous version
1718568 dhclient-script fails to wait for link-local address

Version: 4.2.4-7ubuntu12.12 2018-03-01 20:08:36 UTC

  isc-dhcp (4.2.4-7ubuntu12.12) trusty-security; urgency=medium

  * SECURITY UPDATE: DoS via concurrent TCP sessions
    - debian/patches/CVE-2016-2774.patch: limit number of connections in
      includes/site.h, omapip/listener.c.
    - CVE-2016-2774
  * SECURITY UPDATE: DoS via omapi
    - debian/patches/CVE-2018-573x.patch: fix socket descriptor leak in
      omapip/buffer.c, omapip/message.c.
    - CVE-2017-3144
  * SECURITY UPDATE: buffer overflow in dhclient
    - debian/patches/CVE-2018-573x.patch: check option data size in
    - CVE-2018-5732
  * SECURITY UPDATE: reference counter overflow in dhcpd
    - debian/patches/CVE-2018-573x.patch: avoid overflow in
    - CVE-2018-5733
  * This package does _not_ contain the changes from 4.2.4-7ubuntu12.11 in

 -- Marc Deslauriers <email address hidden> Thu, 01 Mar 2018 08:45:46 -0500

Source diff to previous version
CVE-2016-2774 ISC DHCP 4.1.x before 4.1-ESV-R13 and 4.2.x and 4.3.x before 4.3.4 does not restrict the number of concurrent TCP sessions, which allows remote attac
CVE-2017-3144 dhcp: omapi code doesn't free socket descriptors when empty message is received allowing denial-of-service
CVE-2018-5732 A specially constructed response from a malicious server can cause a buffer overflow in dhclient
CVE-2018-5733 A malicious client can overflow a reference counter in ISC dhcpd

Version: 4.2.4-7ubuntu12.10 2017-06-01 16:06:43 UTC

  isc-dhcp (4.2.4-7ubuntu12.10) trusty; urgency=medium

  * Introduction of a new binary package "isc-dhcp-client-noddns" (LP: #1176046)
    - isc-dhcp-client : no behavioural change from previous version.
    - isc-dhcp-client-noddns : dhclient with DDNS functionality disabled.

    The current functionality in Trusty is to provide DDNS to dhclient by
    default. Note that, this is the opposite in Xenial where dhclient,
    by default, offers no DDNS functionality.

  * Disable tracing and failover.

    The tracing and failover are stricly disabled for the new package
    "isc-dhcp-client-noddns" and doesn't apply to package "isc-dhcp-client".

    In order to successfully build "isc-dhcp-client-noddns" without
    -DNSUPDATE and stay align with upstream Debian git commit [0bbf7c7]
    (closes: #712503) which implies the following:

    - debian/rules : Disable support for failover
      (DHCP Failover is a mechanism whereby two DHCP servers are both configured
      to manage the same pool of addresses so that they can share the load of
      assigning leases for that pool, and provide back-up for each other in case
      of network outages.
      (Define to include Failover Protocol support)

    - debian/rules : Disable support for server activity tracing
      (Server tracing support)

  * CFLAGS configuration change
    - debian/rules : Add backslash '\' characters for CLAGS options :
      to avoid compilation errors expression before '/' token is expected at
      compile time.
    - debian/rules : Remove "export CLAGS" line, since it is now passing during
      ./configure in order to control when compiling with or without DDNS

 -- Eric Desrochers <email address hidden> Wed, 24 May 2017 08:41:07 -0400

Source diff to previous version
1176046 isc-dhcp dhclient listens on extra random ports
712503 dhcpd is listening on random port for all interfaces - Debian Bug report logs

Version: 4.2.4-7ubuntu12.9 2017-05-23 17:06:37 UTC

  isc-dhcp (4.2.4-7ubuntu12.9) trusty; urgency=medium

  * [4b8251a] DHCPv6: fix socket handling so multiple DHCPv6 local clients will
    successfully get addresses (LP: #1689854)

 -- Dan Streetman <email address hidden> Wed, 10 May 2017 12:19:35 -0300

Source diff to previous version
1689854 Multiple DHCPv6 client interfaces fail to receive some server responses

Version: 4.2.4-7ubuntu12.8 2016-11-30 11:07:18 UTC

  isc-dhcp (4.2.4-7ubuntu12.8) trusty; urgency=medium

  * ipv6: wait for duplicate address detection to finish (LP: #1633479).

 -- Scott Moser <email address hidden> Mon, 31 Oct 2016 14:31:58 -0400

1633479 dhclient does not wait for ipv6 dad (duplicate address detection)

About   -   Send Feedback to @ubuntu_updates