RHSA-2005:212 - Security Advisory

Topic

An updated dhcp package that fixes a string format issue is now available
for Red Hat Enterprise Linux 2.1.

This update has been rated as having moderate security impact by the Red
Hat Security Response Team.

Description

The dhcp package provides the ISC Dynamic Host Configuration Protocol
(DHCP) server and relay agent, dhcpd. DHCP is a protocol that allows
devices to get their own network configuration information from a server.

A bug was found in the way dhcpd logs error messages. A malicious DNS
server could send a carefully crafted DNS reply and cause dhcpd to crash or
possibly execute arbitrary code. The Common Vulnerabilities and Exposures
project (cve.mitre.org) has assigned the name CAN-2005-0446 to this issue.

All users of dhcp should upgrade to this updated package, which contains a
backported patch and is not vulnerable to this issue.

Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:

http://www.redhat.com/docs/manuals/enterprise/

Affected Products

• Red Hat Enterprise Linux Server 2 ia64
• Red Hat Enterprise Linux Server 2 i386
• Red Hat Enterprise Linux Workstation 2 ia64

Fixes

• BZ - 149513 - CAN-2004-1006 dhcp string format issue

CVEs

• CVE-2004-1006

References

(none)