[ALSA-2021:2359] Important: dhcp security update
Type:
security
Severity:
important
Release date:
2021-06-09
Description:
The Dynamic Host Configuration Protocol (DHCP) is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and administer DHCP on a network. Security Fix(es): * dhcp: stack-based buffer overflow when parsing statements with colon-separated hex digits in config or lease files in dhcpd and dhclient (CVE-2021-25217) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages:
  • dhcp-client-4.3.6-44.el8_4.1.x86_64.rpm
  • dhcp-common-4.3.6-44.el8_4.1.noarch.rpm
  • dhcp-libs-4.3.6-44.el8_4.1.i686.rpm
  • dhcp-libs-4.3.6-44.el8_4.1.x86_64.rpm
  • dhcp-relay-4.3.6-44.el8_4.1.x86_64.rpm
  • dhcp-server-4.3.6-44.el8_4.1.x86_64.rpm
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.