Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Patches » SUSE-2016:12410

Overview

Id SUSE-2016:12410
Name Novell SUSE 2016:12410 dhcp security update for SLE 11 i586
Vendor Name novell
Product None
Content Type Critical - 01 Critical - 01
Language(s)
Operating System(s) Linux 
Released On 16 Feb 2016 12:00:00

SUSE-2016:12410

Novell SUSE 2016:12410 dhcp security update for SLE 11 i586

Vendor Name

novell

Product

None

Released On

16 Feb 2016 12:00:00

Url

http://www.novell.com/support

Description

LSAC(v2)
This update for dhcp fixes the following issues: - CVE-2015-8605: A remote attacker could have used badly formed packets with an invalid IPv4 UDP length field to cause a DHCP server, client, or relay program to terminate abnormally (bsc#961305) The following bugs were fixed: - bsc#936923: Improper lease duration checking - bsc#880984: Integer overflows in the date and time handling code - bsc#947780: DHCP server could abort with "Unable to set up timer: out of range" on very long or infinite timer intervals / lease lifetimes - bsc#926159: DHCP preferrend and valid lifetime would be logged incorrectly - bsc#928390: dhclient dit not expose next-server DHCPv4 option to script - bsc#926159: DHCP preferrend and valid lifetime would be logged incorrectly

Related Resources

Related Vulnerabilities

None

Related Patches

Superseded Patches

None


Last Updated: 27 May 2016 11:23:16