Security update for dhcp SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2018:0810-2 Final 1 1 2018-03-26T09:46:53Z current 2018-03-26T09:46:53Z 2018-03-26T09:46:53Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for dhcp This update for dhcp fixes the following issues: Security issues fixed: - CVE-2018-5733: reference count overflow in dhcpd (bsc#1083303). - CVE-2018-5732: buffer overflow in dhclient (bsc#1083302). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). sleposp3-dhcp-13533,slessp3-dhcp-13533 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2018/suse-su-20180810-2/ Link for SUSE-SU-2018:0810-2 https://lists.suse.com/pipermail/sle-security-updates/2018-October/004764.html E-Mail link for SUSE-SU-2018:0810-2 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1083302 SUSE Bug 1083302 https://bugzilla.suse.com/1083303 SUSE Bug 1083303 https://www.suse.com/security/cve/CVE-2018-5732/ SUSE CVE CVE-2018-5732 page https://www.suse.com/security/cve/CVE-2018-5733/ SUSE CVE CVE-2018-5733 page SUSE Linux Enterprise Point of Sale 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP3-TERADATA dhcp-4.2.4.P2-0.28.8.1 dhcp-client-4.2.4.P2-0.28.8.1 dhcp-relay-4.2.4.P2-0.28.8.1 dhcp-server-4.2.4.P2-0.28.8.1 dhcp-4.2.4.P2-0.28.8.1 as a component of SUSE Linux Enterprise Point of Sale 11 SP3 dhcp-client-4.2.4.P2-0.28.8.1 as a component of SUSE Linux Enterprise Point of Sale 11 SP3 dhcp-relay-4.2.4.P2-0.28.8.1 as a component of SUSE Linux Enterprise Point of Sale 11 SP3 dhcp-server-4.2.4.P2-0.28.8.1 as a component of SUSE Linux Enterprise Point of Sale 11 SP3 dhcp-4.2.4.P2-0.28.8.1 as a component of SUSE Linux Enterprise Server 11 SP3-LTSS dhcp-client-4.2.4.P2-0.28.8.1 as a component of SUSE Linux Enterprise Server 11 SP3-LTSS dhcp-relay-4.2.4.P2-0.28.8.1 as a component of SUSE Linux Enterprise Server 11 SP3-LTSS dhcp-server-4.2.4.P2-0.28.8.1 as a component of SUSE Linux Enterprise Server 11 SP3-LTSS dhcp-4.2.4.P2-0.28.8.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA dhcp-client-4.2.4.P2-0.28.8.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA dhcp-relay-4.2.4.P2-0.28.8.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA dhcp-server-4.2.4.P2-0.28.8.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA Failure to properly bounds-check a buffer used for processing DHCP options allows a malicious server (or an entity masquerading as a server) to cause a buffer overflow (and resulting crash) in dhclient by sending a response containing a specially constructed options section. Affects ISC DHCP versions 4.1.0 -> 4.1-ESV-R15, 4.2.0 -> 4.2.8, 4.3.0 -> 4.3.6, 4.4.0 CVE-2018-5732 SUSE Linux Enterprise Point of Sale 11 SP3:dhcp-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Point of Sale 11 SP3:dhcp-client-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Point of Sale 11 SP3:dhcp-relay-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Point of Sale 11 SP3:dhcp-server-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-LTSS:dhcp-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-LTSS:dhcp-client-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-LTSS:dhcp-relay-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-LTSS:dhcp-server-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:dhcp-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:dhcp-client-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:dhcp-relay-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:dhcp-server-4.2.4.P2-0.28.8.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180810-2/ https://www.suse.com/security/cve/CVE-2018-5732.html CVE-2018-5732 https://bugzilla.suse.com/1083302 SUSE Bug 1083302 https://bugzilla.suse.com/1085417 SUSE Bug 1085417 A malicious client which is allowed to send very large amounts of traffic (billions of packets) to a DHCP server can eventually overflow a 32-bit reference counter, potentially causing dhcpd to crash. Affects ISC DHCP 4.1.0 -> 4.1-ESV-R15, 4.2.0 -> 4.2.8, 4.3.0 -> 4.3.6, 4.4.0. CVE-2018-5733 SUSE Linux Enterprise Point of Sale 11 SP3:dhcp-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Point of Sale 11 SP3:dhcp-client-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Point of Sale 11 SP3:dhcp-relay-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Point of Sale 11 SP3:dhcp-server-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-LTSS:dhcp-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-LTSS:dhcp-client-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-LTSS:dhcp-relay-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-LTSS:dhcp-server-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:dhcp-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:dhcp-client-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:dhcp-relay-4.2.4.P2-0.28.8.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:dhcp-server-4.2.4.P2-0.28.8.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180810-2/ https://www.suse.com/security/cve/CVE-2018-5733.html CVE-2018-5733 https://bugzilla.suse.com/1083303 SUSE Bug 1083303 https://bugzilla.suse.com/1085417 SUSE Bug 1085417