From e151a222337af9bd3b82dffada3d556696e868b34a69f3646dfe3825a1a49ad1 Mon Sep 17 00:00:00 2001 From: Marius Tomaschewski Date: Mon, 14 Jun 2010 13:00:35 +0000 Subject: [PATCH 1/3] - Updated to ISC DHCP 4.1.1-P1 patch release, which contains a pair of bug fixes including one for a security related bug (bnc#612546, CVE-2010-2156): * A bug was fixed that could cause the DHCPv6 server to advertise/assign a previously allocated (active) lease to a client that has changed subnets, despite being on different shared networks. Dynamic prefixes specifically allocated in shared networks also now are not offered if the client has moved. [ISC-Bugs #21152] * Accept a client id of length 0 while hashing. Previously the server would exit if it attempted to hash a zero length client id, providing attackers with a simple denial of service attack. [ISC-Bugs #21253] OBS-URL: https://build.opensuse.org/package/show/network:dhcp/dhcp?expand=0&rev=29 --- dhcp-4.1.1-P1.tar.bz2 | 3 +++ dhcp-4.1.1.tar.bz2 | 3 --- dhcp.changes | 17 +++++++++++++++++ dhcp.spec | 8 ++++---- 4 files changed, 24 insertions(+), 7 deletions(-) create mode 100644 dhcp-4.1.1-P1.tar.bz2 delete mode 100644 dhcp-4.1.1.tar.bz2 diff --git a/dhcp-4.1.1-P1.tar.bz2 b/dhcp-4.1.1-P1.tar.bz2 new file mode 100644 index 0000000..ee5ee99 --- /dev/null +++ b/dhcp-4.1.1-P1.tar.bz2 @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:6041d1658d814bee5a863964c748dc2f79dd2c618ce9db716b2846177861282a +size 877572 diff --git a/dhcp-4.1.1.tar.bz2 b/dhcp-4.1.1.tar.bz2 deleted file mode 100644 index bccf9df..0000000 --- a/dhcp-4.1.1.tar.bz2 +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:56937cd8e59da6ea0560e82d6b3dd637a96cc3052e0f8e163727c46a22fb87c4 -size 875897 diff --git a/dhcp.changes b/dhcp.changes index abd6e10..cb9437d 100644 --- a/dhcp.changes +++ b/dhcp.changes @@ -1,3 +1,20 @@ +------------------------------------------------------------------- +Mon Jun 14 12:11:57 UTC 2010 - mt@suse.de + +- Updated to ISC DHCP 4.1.1-P1 patch release, which contains + a pair of bug fixes including one for a security related bug + (bnc#612546, CVE-2010-2156): + * A bug was fixed that could cause the DHCPv6 server to + advertise/assign a previously allocated (active) lease to a + client that has changed subnets, despite being on different + shared networks. Dynamic prefixes specifically allocated in + shared networks also now are not offered if the client has + moved. [ISC-Bugs #21152] + * Accept a client id of length 0 while hashing. Previously the + server would exit if it attempted to hash a zero length client + id, providing attackers with a simple denial of service attack. + [ISC-Bugs #21253] + ------------------------------------------------------------------- Tue May 18 08:46:37 UTC 2010 - mt@suse.de diff --git a/dhcp.spec b/dhcp.spec index 8181147..1ad552f 100644 --- a/dhcp.spec +++ b/dhcp.spec @@ -1,5 +1,5 @@ # -# spec file for package dhcp (Version 4.1.1) +# spec file for package dhcp (Version 4.1.1.P1) # # Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany. # @@ -17,7 +17,7 @@ # norootforbuild -%define isc_version 4.1.1 +%define isc_version 4.1.1-P1 %define susefw2dir %{_sysconfdir}/sysconfig/SuSEfirewall2.d/services %define omc_prefix /usr/share/omc %define omc_svcdir %{omc_prefix}/svcinfo.d @@ -32,8 +32,8 @@ BuildRequires: dos2unix License: BSD3c(or similar) Group: Productivity/Networking/Boot/Servers AutoReqProv: on -Version: 4.1.1 -Release: 2 +Version: 4.1.1.P1 +Release: 0 Summary: Common Files Used by ISC DHCP Software Url: http://www.isc.org/software/dhcp Source0: dhcp-%{isc_version}.tar.bz2 From 0345bc2f9f942064fe070037a6c09f3cabd7c1034691c2521355e60b4d1c2502 Mon Sep 17 00:00:00 2001 From: OBS User autobuild Date: Mon, 14 Jun 2010 15:10:26 +0000 Subject: [PATCH 2/3] Accepting request 41441 from network:dhcp checked in (request 41441) OBS-URL: https://build.opensuse.org/request/show/41441 OBS-URL: https://build.opensuse.org/package/show/network:dhcp/dhcp?expand=0&rev=30 --- dhcp-4.1.1-P1.tar.bz2 | 3 --- dhcp-4.1.1.tar.bz2 | 3 +++ dhcp.changes | 17 ----------------- dhcp.spec | 8 ++++---- 4 files changed, 7 insertions(+), 24 deletions(-) delete mode 100644 dhcp-4.1.1-P1.tar.bz2 create mode 100644 dhcp-4.1.1.tar.bz2 diff --git a/dhcp-4.1.1-P1.tar.bz2 b/dhcp-4.1.1-P1.tar.bz2 deleted file mode 100644 index ee5ee99..0000000 --- a/dhcp-4.1.1-P1.tar.bz2 +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:6041d1658d814bee5a863964c748dc2f79dd2c618ce9db716b2846177861282a -size 877572 diff --git a/dhcp-4.1.1.tar.bz2 b/dhcp-4.1.1.tar.bz2 new file mode 100644 index 0000000..bccf9df --- /dev/null +++ b/dhcp-4.1.1.tar.bz2 @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:56937cd8e59da6ea0560e82d6b3dd637a96cc3052e0f8e163727c46a22fb87c4 +size 875897 diff --git a/dhcp.changes b/dhcp.changes index cb9437d..abd6e10 100644 --- a/dhcp.changes +++ b/dhcp.changes @@ -1,20 +1,3 @@ -------------------------------------------------------------------- -Mon Jun 14 12:11:57 UTC 2010 - mt@suse.de - -- Updated to ISC DHCP 4.1.1-P1 patch release, which contains - a pair of bug fixes including one for a security related bug - (bnc#612546, CVE-2010-2156): - * A bug was fixed that could cause the DHCPv6 server to - advertise/assign a previously allocated (active) lease to a - client that has changed subnets, despite being on different - shared networks. Dynamic prefixes specifically allocated in - shared networks also now are not offered if the client has - moved. [ISC-Bugs #21152] - * Accept a client id of length 0 while hashing. Previously the - server would exit if it attempted to hash a zero length client - id, providing attackers with a simple denial of service attack. - [ISC-Bugs #21253] - ------------------------------------------------------------------- Tue May 18 08:46:37 UTC 2010 - mt@suse.de diff --git a/dhcp.spec b/dhcp.spec index 1ad552f..8181147 100644 --- a/dhcp.spec +++ b/dhcp.spec @@ -1,5 +1,5 @@ # -# spec file for package dhcp (Version 4.1.1.P1) +# spec file for package dhcp (Version 4.1.1) # # Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany. # @@ -17,7 +17,7 @@ # norootforbuild -%define isc_version 4.1.1-P1 +%define isc_version 4.1.1 %define susefw2dir %{_sysconfdir}/sysconfig/SuSEfirewall2.d/services %define omc_prefix /usr/share/omc %define omc_svcdir %{omc_prefix}/svcinfo.d @@ -32,8 +32,8 @@ BuildRequires: dos2unix License: BSD3c(or similar) Group: Productivity/Networking/Boot/Servers AutoReqProv: on -Version: 4.1.1.P1 -Release: 0 +Version: 4.1.1 +Release: 2 Summary: Common Files Used by ISC DHCP Software Url: http://www.isc.org/software/dhcp Source0: dhcp-%{isc_version}.tar.bz2 From b82bd4dda294a028101062a975ea041c15732ec917d8928699a54465b64a06a5 Mon Sep 17 00:00:00 2001 From: OBS User buildservice-autocommit Date: Mon, 14 Jun 2010 15:10:27 +0000 Subject: [PATCH 3/3] Updating link to change in openSUSE:Factory/dhcp revision 35.0 OBS-URL: https://build.opensuse.org/package/show/network:dhcp/dhcp?expand=0&rev=fcd2ee038fbedfda7d36c3a36c202bde --- dhcp-4.1.1-P1.tar.bz2 | 3 +++ dhcp-4.1.1.tar.bz2 | 3 --- dhcp.changes | 17 +++++++++++++++++ dhcp.spec | 8 ++++---- 4 files changed, 24 insertions(+), 7 deletions(-) create mode 100644 dhcp-4.1.1-P1.tar.bz2 delete mode 100644 dhcp-4.1.1.tar.bz2 diff --git a/dhcp-4.1.1-P1.tar.bz2 b/dhcp-4.1.1-P1.tar.bz2 new file mode 100644 index 0000000..ee5ee99 --- /dev/null +++ b/dhcp-4.1.1-P1.tar.bz2 @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:6041d1658d814bee5a863964c748dc2f79dd2c618ce9db716b2846177861282a +size 877572 diff --git a/dhcp-4.1.1.tar.bz2 b/dhcp-4.1.1.tar.bz2 deleted file mode 100644 index bccf9df..0000000 --- a/dhcp-4.1.1.tar.bz2 +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:56937cd8e59da6ea0560e82d6b3dd637a96cc3052e0f8e163727c46a22fb87c4 -size 875897 diff --git a/dhcp.changes b/dhcp.changes index abd6e10..cb9437d 100644 --- a/dhcp.changes +++ b/dhcp.changes @@ -1,3 +1,20 @@ +------------------------------------------------------------------- +Mon Jun 14 12:11:57 UTC 2010 - mt@suse.de + +- Updated to ISC DHCP 4.1.1-P1 patch release, which contains + a pair of bug fixes including one for a security related bug + (bnc#612546, CVE-2010-2156): + * A bug was fixed that could cause the DHCPv6 server to + advertise/assign a previously allocated (active) lease to a + client that has changed subnets, despite being on different + shared networks. Dynamic prefixes specifically allocated in + shared networks also now are not offered if the client has + moved. [ISC-Bugs #21152] + * Accept a client id of length 0 while hashing. Previously the + server would exit if it attempted to hash a zero length client + id, providing attackers with a simple denial of service attack. + [ISC-Bugs #21253] + ------------------------------------------------------------------- Tue May 18 08:46:37 UTC 2010 - mt@suse.de diff --git a/dhcp.spec b/dhcp.spec index 8181147..35fdecd 100644 --- a/dhcp.spec +++ b/dhcp.spec @@ -1,5 +1,5 @@ # -# spec file for package dhcp (Version 4.1.1) +# spec file for package dhcp (Version 4.1.1.P1) # # Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany. # @@ -17,7 +17,7 @@ # norootforbuild -%define isc_version 4.1.1 +%define isc_version 4.1.1-P1 %define susefw2dir %{_sysconfdir}/sysconfig/SuSEfirewall2.d/services %define omc_prefix /usr/share/omc %define omc_svcdir %{omc_prefix}/svcinfo.d @@ -32,8 +32,8 @@ BuildRequires: dos2unix License: BSD3c(or similar) Group: Productivity/Networking/Boot/Servers AutoReqProv: on -Version: 4.1.1 -Release: 2 +Version: 4.1.1.P1 +Release: 1 Summary: Common Files Used by ISC DHCP Software Url: http://www.isc.org/software/dhcp Source0: dhcp-%{isc_version}.tar.bz2