Lucene search

CentOS ProjectCESA-2005:603-01

HistoryJul 27, 2005 - 10:57 p.m.

dhcpcd security update

2005-07-2722:57:30

CentOS Project

lists.centos.org

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

68.9%

JSON

CentOS Errata and Security Advisory CESA-2005:603-01

The dhcpcd package includes a DHCP client daemon.

An out of bounds memory read bug was found in dhcpcd. A malicious user on
the local network could send a specially crafted DHCP packet to the client
causing it to crash. The Common Vulnerabilities and Exposures project
assigned the name CAN-2005-1848 to this issue.

Users of dhcpcd should update to this erratum package, which contains a
patch that resolves this issue.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2005-July/074145.html

Affected packages:
dhcpcd

OSVersionArchitecturePackageVersionFilename
CentOS2i386dhcpcd< 1.3.20pl0-2dhcpcd-1.3.20pl0-2.i386.rpm

OS	Version	Architecture	Package	Version	Filename
CentOS	2	i386	dhcpcd	< 1.3.20pl0-2	dhcpcd-1.3.20pl0-2.i386.rpm

References

steadfast.net/

www.ict.swin.edu.au/staff/jnewbigin

rhn.redhat.com/errata/rh21as-errata.html

twitter.com/centos

www.facebook.com/groups/centosproject/

www.linkedin.com/groups/22405

www.reddit.com/r/CentOS/

youtube.com/TheCentOSProject

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

68.9%

JSON

Related for CESA-2005:603-01