dhcp-4.2.5-58.3.0.1.el7.AXS7

エラータID: AXSA:2018-2613:02

Release date: 
Tuesday, March 13, 2018 - 14:54
Subject: 
dhcp-4.2.5-58.3.0.1.el7.AXS7
Affected Channels: 
Asianux Server 7 for x86_64
Severity: 
High
Description: 

The Dynamic Host Configuration Protocol (DHCP) is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and administer DHCP on a network.

Security Fix(es):

* dhcp: Buffer overflow in dhclient possibly allowing code execution triggered by malicious server (CVE-2018-5732)

* dhcp: Reference count overflow in dhcpd allows denial of service (CVE-2018-5733)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

Asianux would like to thank ISC for reporting these issues. Upstream acknowledges Felix Wilhelm (Google) as the original reporter of these issues.

CVE-2018-5732
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
CVE-2018-5733
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.

Solution: 

Update packages.

CVEs: 
CVE-2018-5732
Failure to properly bounds-check a buffer used for processing DHCP options allows a malicious server (or an entity masquerading as a server) to cause a buffer overflow (and resulting crash) in dhclient by sending a response containing a specially constructed options section. Affects ISC DHCP versions 4.1.0 -> 4.1-ESV-R15, 4.2.0 -> 4.2.8, 4.3.0 -> 4.3.6, 4.4.0
CVE-2018-5733
A malicious client which is allowed to send very large amounts of traffic (billions of packets) to a DHCP server can eventually overflow a 32-bit reference counter, potentially causing dhcpd to crash. Affects ISC DHCP 4.1.0 -> 4.1-ESV-R15, 4.2.0 -> 4.2.8, 4.3.0 -> 4.3.6, 4.4.0.
Additional Info: 

N/A

Download: 

SRPMS
  1. dhcp-4.2.5-58.3.0.1.el7.AXS7.src.rpm
    MD5: 6f15b0703171828a8b90d4889c82367e
    SHA-256: 1e8713ff9e946a3c5dfa8c76b03a5b95b6e886414ba7e5d9035ad4b9330a81e6
    Size: 8.07 MB

Asianux Server 7 for x86_64
  1. dhclient-4.2.5-58.3.0.1.el7.AXS7.x86_64.rpm
    MD5: b6ed4a91687eeb31310de6dbba43f11f
    SHA-256: e2f0287332213462990be6979bf766e72700bfdbda035e8a070458a9979f1fa2
    Size: 281.29 kB
  2. dhcp-4.2.5-58.3.0.1.el7.AXS7.x86_64.rpm
    MD5: d404155a1ede0d18e305c612e6778ac0
    SHA-256: 99d57b807ae9b8c8424dbf5296d97599d869d90af9b6a6e2842e66aad6375592
    Size: 513.09 kB
  3. dhcp-common-4.2.5-58.3.0.1.el7.AXS7.x86_64.rpm
    MD5: c6d000566754f58cd42f4dedb244975b
    SHA-256: 812f5f39e5f2d7962695b0683e850bd52e7386f142aca9a10c9033f07dc678d2
    Size: 173.13 kB
  4. dhcp-libs-4.2.5-58.3.0.1.el7.AXS7.x86_64.rpm
    MD5: ce0ac4d36ec70f0728958d097a04de3a
    SHA-256: b163f1e247b3439c1fa71eafab858dcc934ea309cf738b704bfeef96dca81ec6
    Size: 129.57 kB
  5. dhcp-libs-4.2.5-58.3.0.1.el7.AXS7.i686.rpm
    MD5: ad869a22cb54724c5d124473e2d7a23d
    SHA-256: 73dfd597744880e578013f7f6bd7b9b52ef486015798d54dc15f2b22733df350
    Size: 129.20 kB