Synopsis

Moderate: dhcp security update

Type/Severity

Security Advisory: Moderate

Topic

Updated dhcp packages that fix one security issue are now available for
Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having moderate
security impact. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available from the CVE link in
the References section.

Description

The Dynamic Host Configuration Protocol (DHCP) is a protocol that allows
individual devices on an IP network to get their own network configuration
information, including an IP address, a subnet mask, and a broadcast
address. DHCPv6 is the DHCP protocol version for IPv6 networks.

A flaw was found in the way the dhcpd daemon processed certain DHCPv6
messages for addresses that had previously been declined and marked as
abandoned internally. If a remote attacker sent such messages to dhcpd, it
could cause dhcpd to crash due to an assertion failure if it was running as
a DHCPv6 server. (CVE-2011-0413)

Red Hat would like to thank Internet Systems Consortium for reporting this
issue.

Users running dhcpd as a DHCPv6 server should upgrade to these updated
packages, which contain a backported patch to correct this issue. After
installing this update, all DHCP servers will be restarted automatically.

Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Affected Products

• Red Hat Enterprise Linux Server 6 x86_64
• Red Hat Enterprise Linux Server 6 i386
• Red Hat Enterprise Linux Workstation 6 x86_64
• Red Hat Enterprise Linux Workstation 6 i386
• Red Hat Enterprise Linux Desktop 6 x86_64
• Red Hat Enterprise Linux Desktop 6 i386
• Red Hat Enterprise Linux for IBM z Systems 6 s390x
• Red Hat Enterprise Linux for Power, big endian 6 ppc64
• Red Hat Enterprise Linux for Scientific Computing 6 x86_64
• Red Hat Enterprise Linux Server from RHUI 6 x86_64
• Red Hat Enterprise Linux Server from RHUI 6 i386

Fixes

• BZ - 672755 - CVE-2011-0413 dhcp: unexpected abort caused by a DHCPv6 decline message

CVEs

• CVE-2011-0413

References

• https://access.redhat.com/security/updates/classification/#moderate
• http://www.isc.org/software/dhcp/advisories/cve-2011-0413

Red Hat Enterprise Linux Server 6

SRPM
dhcp-4.1.1-12.P1.el6_0.2.src.rpm	SHA-256: 4807011f24d3f929933332c3e6a46a2281eab393c97cc923a7393136751c27bd
x86_64
dhclient-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 297a56cea7229682814ab9a50c1607c4bdc15fcc89de3ba85c748abbf6bdb2f0
dhcp-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 7c230a248423ff412cfab6c72bfd70a84abc2997a2c67f9706fabdb30ed74a2f
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 56523186d52404bfa40eddbefe15a7ead3e7644d689057d7e1c7f94bcb5c062e
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 44995a25f9765cc17b483b79bea2733208bf795ffb258f6104fa1b553d696577
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 44995a25f9765cc17b483b79bea2733208bf795ffb258f6104fa1b553d696577
dhcp-devel-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 6150ad7d1b1b8af7b2d89341a50eaf0980ea423ad2414b9f6330b60f3b452db3
dhcp-devel-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: dd766e44a827071d665dbfb01774bf07f971a9e7ef04b8f2c80ce781d3cf494b
i386
dhclient-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: a6be2b8466b6522bbf7dc5179059e3bfe223c20cc0a6592a1580db7216e0bbb4
dhcp-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: c73df08b32eea8929e6ea50d308a89bf5983aae133c2f9611666d31eab86b5bc
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 56523186d52404bfa40eddbefe15a7ead3e7644d689057d7e1c7f94bcb5c062e
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 56523186d52404bfa40eddbefe15a7ead3e7644d689057d7e1c7f94bcb5c062e
dhcp-devel-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 6150ad7d1b1b8af7b2d89341a50eaf0980ea423ad2414b9f6330b60f3b452db3

Red Hat Enterprise Linux Workstation 6

SRPM
dhcp-4.1.1-12.P1.el6_0.2.src.rpm	SHA-256: 4807011f24d3f929933332c3e6a46a2281eab393c97cc923a7393136751c27bd
x86_64
dhclient-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 297a56cea7229682814ab9a50c1607c4bdc15fcc89de3ba85c748abbf6bdb2f0
dhcp-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 7c230a248423ff412cfab6c72bfd70a84abc2997a2c67f9706fabdb30ed74a2f
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 56523186d52404bfa40eddbefe15a7ead3e7644d689057d7e1c7f94bcb5c062e
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 44995a25f9765cc17b483b79bea2733208bf795ffb258f6104fa1b553d696577
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 44995a25f9765cc17b483b79bea2733208bf795ffb258f6104fa1b553d696577
dhcp-devel-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 6150ad7d1b1b8af7b2d89341a50eaf0980ea423ad2414b9f6330b60f3b452db3
dhcp-devel-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: dd766e44a827071d665dbfb01774bf07f971a9e7ef04b8f2c80ce781d3cf494b
i386
dhclient-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: a6be2b8466b6522bbf7dc5179059e3bfe223c20cc0a6592a1580db7216e0bbb4
dhcp-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: c73df08b32eea8929e6ea50d308a89bf5983aae133c2f9611666d31eab86b5bc
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 56523186d52404bfa40eddbefe15a7ead3e7644d689057d7e1c7f94bcb5c062e
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 56523186d52404bfa40eddbefe15a7ead3e7644d689057d7e1c7f94bcb5c062e
dhcp-devel-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 6150ad7d1b1b8af7b2d89341a50eaf0980ea423ad2414b9f6330b60f3b452db3

Red Hat Enterprise Linux Desktop 6

SRPM
dhcp-4.1.1-12.P1.el6_0.2.src.rpm	SHA-256: 4807011f24d3f929933332c3e6a46a2281eab393c97cc923a7393136751c27bd
x86_64
dhclient-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 297a56cea7229682814ab9a50c1607c4bdc15fcc89de3ba85c748abbf6bdb2f0
dhcp-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 7c230a248423ff412cfab6c72bfd70a84abc2997a2c67f9706fabdb30ed74a2f
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 56523186d52404bfa40eddbefe15a7ead3e7644d689057d7e1c7f94bcb5c062e
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 44995a25f9765cc17b483b79bea2733208bf795ffb258f6104fa1b553d696577
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 44995a25f9765cc17b483b79bea2733208bf795ffb258f6104fa1b553d696577
dhcp-devel-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 6150ad7d1b1b8af7b2d89341a50eaf0980ea423ad2414b9f6330b60f3b452db3
dhcp-devel-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: dd766e44a827071d665dbfb01774bf07f971a9e7ef04b8f2c80ce781d3cf494b
i386
dhclient-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: a6be2b8466b6522bbf7dc5179059e3bfe223c20cc0a6592a1580db7216e0bbb4
dhcp-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: c73df08b32eea8929e6ea50d308a89bf5983aae133c2f9611666d31eab86b5bc
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 56523186d52404bfa40eddbefe15a7ead3e7644d689057d7e1c7f94bcb5c062e
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 56523186d52404bfa40eddbefe15a7ead3e7644d689057d7e1c7f94bcb5c062e
dhcp-devel-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 6150ad7d1b1b8af7b2d89341a50eaf0980ea423ad2414b9f6330b60f3b452db3

Red Hat Enterprise Linux for IBM z Systems 6

SRPM
dhcp-4.1.1-12.P1.el6_0.2.src.rpm	SHA-256: 4807011f24d3f929933332c3e6a46a2281eab393c97cc923a7393136751c27bd
s390x
dhclient-4.1.1-12.P1.el6_0.2.s390x.rpm	SHA-256: 2c2993a7a13fc0eccb2c64f64f3adf2a12c88a9dc2c142b6ab541988cd9d1b0b
dhcp-4.1.1-12.P1.el6_0.2.s390x.rpm	SHA-256: 7cfe3833d4692ac147f76f9bb8d7085db9a68484678f20f6cc17197133f88e9d
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.s390.rpm	SHA-256: e5abc3ba0ed08c100a9920d916573a65567d998fa816ca8d2561315bb24a657f
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.s390x.rpm	SHA-256: 800256a4d6320ad797a9d63a4e6ecd577eacf3fa5729ee454b90e3e1dac42806
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.s390x.rpm	SHA-256: 800256a4d6320ad797a9d63a4e6ecd577eacf3fa5729ee454b90e3e1dac42806
dhcp-devel-4.1.1-12.P1.el6_0.2.s390.rpm	SHA-256: 37c07a19939093467dc7ead96397fdddbd6d8293bcef227b969953bab24855d5
dhcp-devel-4.1.1-12.P1.el6_0.2.s390x.rpm	SHA-256: 9f2a2dffc79e3ce82be38caeac4a8bb175ec358bad3342beaea18c6840019825

Red Hat Enterprise Linux for Power, big endian 6

SRPM
dhcp-4.1.1-12.P1.el6_0.2.src.rpm	SHA-256: 4807011f24d3f929933332c3e6a46a2281eab393c97cc923a7393136751c27bd
ppc64
dhclient-4.1.1-12.P1.el6_0.2.ppc64.rpm	SHA-256: b021ca8c70b5ebed85c8f41b42d76d9965f393da11b42b7f891fb68bda59a425
dhcp-4.1.1-12.P1.el6_0.2.ppc64.rpm	SHA-256: d7698c363a73562d84bd53cf1021b393169b0a04411586db19cd0bd49c36da3a
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.ppc.rpm	SHA-256: c811377cfcebbbc35abf0dfeeae52b5dc5f19c5718970b1aa5679249c7c5c60d
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.ppc64.rpm	SHA-256: abad4cc72449eb6bb3b894af99e6291226f5a9c8c7a36decc11fd417d91565cc
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.ppc64.rpm	SHA-256: abad4cc72449eb6bb3b894af99e6291226f5a9c8c7a36decc11fd417d91565cc
dhcp-devel-4.1.1-12.P1.el6_0.2.ppc.rpm	SHA-256: 4a123e609aad225a8d0be9086a48ca0429390f5e60eff6394d666a5be46c88eb
dhcp-devel-4.1.1-12.P1.el6_0.2.ppc64.rpm	SHA-256: 3d8441ffa041ae047a936753617881d4a8f7509682cf150d960c959b2e7fa586

Red Hat Enterprise Linux for Scientific Computing 6

SRPM
dhcp-4.1.1-12.P1.el6_0.2.src.rpm	SHA-256: 4807011f24d3f929933332c3e6a46a2281eab393c97cc923a7393136751c27bd
x86_64
dhclient-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 297a56cea7229682814ab9a50c1607c4bdc15fcc89de3ba85c748abbf6bdb2f0
dhcp-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 7c230a248423ff412cfab6c72bfd70a84abc2997a2c67f9706fabdb30ed74a2f
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 56523186d52404bfa40eddbefe15a7ead3e7644d689057d7e1c7f94bcb5c062e
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 44995a25f9765cc17b483b79bea2733208bf795ffb258f6104fa1b553d696577
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 44995a25f9765cc17b483b79bea2733208bf795ffb258f6104fa1b553d696577
dhcp-devel-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 6150ad7d1b1b8af7b2d89341a50eaf0980ea423ad2414b9f6330b60f3b452db3
dhcp-devel-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: dd766e44a827071d665dbfb01774bf07f971a9e7ef04b8f2c80ce781d3cf494b

Red Hat Enterprise Linux Server from RHUI 6

SRPM
dhcp-4.1.1-12.P1.el6_0.2.src.rpm	SHA-256: 4807011f24d3f929933332c3e6a46a2281eab393c97cc923a7393136751c27bd
x86_64
dhclient-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 297a56cea7229682814ab9a50c1607c4bdc15fcc89de3ba85c748abbf6bdb2f0
dhcp-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 7c230a248423ff412cfab6c72bfd70a84abc2997a2c67f9706fabdb30ed74a2f
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 56523186d52404bfa40eddbefe15a7ead3e7644d689057d7e1c7f94bcb5c062e
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 44995a25f9765cc17b483b79bea2733208bf795ffb258f6104fa1b553d696577
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: 44995a25f9765cc17b483b79bea2733208bf795ffb258f6104fa1b553d696577
dhcp-devel-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 6150ad7d1b1b8af7b2d89341a50eaf0980ea423ad2414b9f6330b60f3b452db3
dhcp-devel-4.1.1-12.P1.el6_0.2.x86_64.rpm	SHA-256: dd766e44a827071d665dbfb01774bf07f971a9e7ef04b8f2c80ce781d3cf494b
i386
dhclient-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: a6be2b8466b6522bbf7dc5179059e3bfe223c20cc0a6592a1580db7216e0bbb4
dhcp-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: c73df08b32eea8929e6ea50d308a89bf5983aae133c2f9611666d31eab86b5bc
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 56523186d52404bfa40eddbefe15a7ead3e7644d689057d7e1c7f94bcb5c062e
dhcp-debuginfo-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 56523186d52404bfa40eddbefe15a7ead3e7644d689057d7e1c7f94bcb5c062e
dhcp-devel-4.1.1-12.P1.el6_0.2.i686.rpm	SHA-256: 6150ad7d1b1b8af7b2d89341a50eaf0980ea423ad2414b9f6330b60f3b452db3