Univention Bugzilla – Bug 53469
isc-dhcp: Multiple issues (5.0)
Last modified: 2021-06-23 15:55:52 CEST
New Debian isc-dhcp 4.4.1-2+deb10u1A~5.0.0.202106210952 fixes: This update addresses the following issue: * stack-based buffer overflow when parsing statements with colon-separated hex digits in config or lease files in dhcpd and dhclient (CVE-2021-25217)
--- mirror/ftp/pool/main/i/isc-dhcp/isc-dhcp_4.4.1-2A~5.0.0.202105041300.dsc +++ apt/ucs_5.0-0-errata5.0-0/source/isc-dhcp_4.4.1-2+deb10u1A~5.0.0.202106210952.dsc @@ -1,4 +1,4 @@ -4.4.1-2A~5.0.0.202105041300 [Tue, 04 May 2021 13:00:40 +0200] Univention builddaemon <buildd@univention.de>: +4.4.1-2+deb10u1A~5.0.0.202106210952 [Mon, 21 Jun 2021 09:52:57 +0200] Univention builddaemon <buildd@univention.de>: * UCS auto build. The following patches have been applied to the original source package 10_fix_28139_ranges @@ -9,6 +9,13 @@ 30_policy 30_policy +4.4.1-2+deb10u1 [Thu, 03 Jun 2021 12:59:09 +0200] Salvatore Bonaccorso <carnil@debian.org>: + + * Non-maintainer upload. + * A buffer overrun in lease file parsing code can be used to exploit a + common vulnerability shared by dhcpd and dhclient (CVE-2021-25217) + (Closes: #989157) + 4.4.1-2 [Tue, 11 Dec 2018 03:55:12 +0000] Michael Gilbert <mgilbert@debian.org>: * Set initial address to 0.0.0.0 on hurd (closes: #875566). <http://piuparts.knut.univention.de/5.0-0/#1544773028057619236>
OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-0] 7f6ec4e96b Bug #53469: isc-dhcp 4.4.1-2+deb10u1A~5.0.0.202106210952 doc/errata/staging/isc-dhcp.yaml | 13 +++++++++++++ 1 file changed, 13 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x16>