UbuntuUpdates.org

Package "isc-dhcp"

Name: isc-dhcp

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • DHCP client for automatically obtaining an IP address
  • common manpages relevant to all of the isc-dhcp packages
  • API for accessing and modifying the DHCP server and client state
  • ISC DHCP server for automatic IP address assignment

Latest version: 4.3.5-3ubuntu7.4
Release: bionic (18.04)
Level: security
Repository: main

Links



Other versions of "isc-dhcp" in Bionic

Repository Area Version
base main 4.3.5-3ubuntu7
base universe 4.3.5-3ubuntu7
security universe 4.3.5-3ubuntu7.4
updates universe 4.3.5-3ubuntu7.4
updates main 4.3.5-3ubuntu7.4

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 4.3.5-3ubuntu7.4 2022-10-05 18:07:06 UTC

  isc-dhcp (4.3.5-3ubuntu7.4) bionic-security; urgency=medium

  * SECURITY UPDATE: option refcount overflow
    - debian/patches/CVE-2022-2928.patch: correct reference counts in
      common/options.c, common/tests/option_unittest.c.
    - CVE-2022-2928
  * SECURITY UPDATE: DHCP memory leak
    - debian/patches/CVE-2022-2929.patch: properly free memory when hitting
      errors in common/options.c.
    - CVE-2022-2929

 -- Marc Deslauriers <email address hidden> Tue, 04 Oct 2022 09:38:12 -0400

Source diff to previous version
CVE-2022-2928 RESERVED
CVE-2022-2929 RESERVED

Version: 4.3.5-3ubuntu7.3 2021-05-27 11:06:22 UTC

  isc-dhcp (4.3.5-3ubuntu7.3) bionic-security; urgency=medium

  * SECURITY UPDATE: DoS via incorrect option information parsing
    - debian/patches/CVE-2021-25217.patch: fix parsing in common/parse.c.
    - CVE-2021-25217

 -- Marc Deslauriers <email address hidden> Tue, 25 May 2021 06:50:53 -0400

Source diff to previous version
CVE-2021-25217 In ISC DHCP 4.1-ESV-R1 -&gt; 4.1-ESV-R16, ISC DHCP 4.4.0 -&gt; 4.4.2 ( ...

Version: 4.3.5-3ubuntu7.1 2019-05-13 15:07:22 UTC

  isc-dhcp (4.3.5-3ubuntu7.1) bionic-security; urgency=medium

  * SECURITY UPDATE: DoS via change in bind behaviour (LP: #1781699)
    - debian/patches/CVE-2019-6470.patch: use 0 instead of -1 to indicate
      empty heap index in includes/dhcpd.h, server/mdb6.c,
      server/tests/mdb6_unittest.c.
    - CVE-2019-6470

 -- Marc Deslauriers <email address hidden> Mon, 06 May 2019 09:00:01 -0400

1781699 DHCPv6 server crashes regularly (bionic)
CVE-2019-6470 DHCPv6 server crashes regularly



About   -   Send Feedback to @ubuntu_updates