UbuntuUpdates.org

Package "isc-dhcp"

Name: isc-dhcp

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Dynamic DNS (DDNS) enabled DHCP client
  • ISC DHCP relay daemon
  • DHCP server that uses LDAP as its backend

Latest version: 4.3.3-5ubuntu12.10
Release: xenial (16.04)
Level: updates
Repository: universe

Links



Other versions of "isc-dhcp" in Xenial

Repository Area Version
base main 4.3.3-5ubuntu12
base universe 4.3.3-5ubuntu12
security main 4.3.3-5ubuntu12.9
security universe 4.3.3-5ubuntu12.9
updates main 4.3.3-5ubuntu12.10

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 4.3.3-5ubuntu12.10 2018-03-15 10:07:18 UTC

  isc-dhcp (4.3.3-5ubuntu12.10) xenial; urgency=medium

  * dhclient-script.linux: handle empty case also when waiting for ipv6 link
    local DAD. (LP: #1718568)

 -- Dan Streetman <email address hidden> Fri, 02 Mar 2018 13:16:05 -0500

Source diff to previous version
1718568 dhclient-script fails to wait for link-local address

Version: 4.3.3-5ubuntu12.9 2018-03-01 20:08:41 UTC

  isc-dhcp (4.3.3-5ubuntu12.9) xenial-security; urgency=medium

  * SECURITY UPDATE: DoS via concurrent TCP sessions
    - debian/patches/CVE-2016-2774.patch: limit number of connections in
      includes/site.h, omapip/listener.c.
    - CVE-2016-2774
  * SECURITY UPDATE: DoS via omapi
    - debian/patches/CVE-2018-573x.patch: fix socket descriptor leak in
      omapip/buffer.c, omapip/message.c.
    - CVE-2017-3144
  * SECURITY UPDATE: buffer overflow in dhclient
    - debian/patches/CVE-2018-573x.patch: check option data size in
      common/options.c, add tests to common/tests/Makefile.am,
      common/tests/option_unittest.c.
    - CVE-2018-5732
  * SECURITY UPDATE: reference counter overflow in dhcpd
    - debian/patches/CVE-2018-573x.patch: avoid overflow in
      common/options.c.
    - CVE-2018-5733
  * This package does _not_ contain the changes from 4.3.3-5ubuntu12.8 in
    xenial-proposed.

 -- Marc Deslauriers <email address hidden> Thu, 01 Mar 2018 08:20:48 -0500

Source diff to previous version
CVE-2016-2774 ISC DHCP 4.1.x before 4.1-ESV-R13 and 4.2.x and 4.3.x before 4.3.4 does not restrict the number of concurrent TCP sessions, which allows remote attac
CVE-2017-3144 dhcp: omapi code doesn't free socket descriptors when empty message is received allowing denial-of-service
CVE-2018-5732 A specially constructed response from a malicious server can cause a buffer overflow in dhclient
CVE-2018-5733 A malicious client can overflow a reference counter in ISC dhcpd

Version: 4.3.3-5ubuntu12.7 2017-06-01 16:06:46 UTC

  isc-dhcp (4.3.3-5ubuntu12.7) xenial; urgency=medium

  * debian/control : Add "Replaces:" option for package isc-dhcp-client
    to allow the packaging system to remove "isc-dhcp-client-noddns" on
    systems on which it is installed and replace it by "isc-dhcp-client"
    during a release upgrade from Trusty to Xenial. (LP: #1176046)

 -- Eric Desrochers <email address hidden> Wed, 01 Feb 2017 08:36:18 -0500

Source diff to previous version
1176046 isc-dhcp dhclient listens on extra random ports

Version: 4.3.3-5ubuntu12.6 2016-12-19 17:08:00 UTC

  isc-dhcp (4.3.3-5ubuntu12.6) xenial; urgency=medium

  * debian/initramfs/lib/etc/dhcp/dhclient-enter-hooks.d/config: clean up
    script to remove IPv4 bits that would never be called; since for this SRU
    we only do IPv6. (LP: #1621507)

Source diff to previous version

Version: 4.3.3-5ubuntu12.4 2016-11-17 19:06:55 UTC

  isc-dhcp (4.3.3-5ubuntu12.4) xenial; urgency=medium

  * ipv6: wait for duplicate address detection to finish (LP: #1633479).

 -- Scott Moser <email address hidden> Mon, 31 Oct 2016 14:32:14 -0400

1633479 dhclient does not wait for ipv6 dad (duplicate address detection)



About   -   Send Feedback to @ubuntu_updates