(RHSA-2019:2060) Moderate: dhcp security and bug fix update

2019-08-0607:56:37

access.redhat.com

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

52.5%

JSON

The Dynamic Host Configuration Protocol (DHCP) is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and administer DHCP on a network.

Security Fix(es):

dhcp: double-deletion of the released addresses in the dhcpv6 code leading to crash and possible DoS (CVE-2019-6470)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.7 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHat7x86_64dhcp-libs< 4.2.5-77.el7dhcp-libs-4.2.5-77.el7.x86_64.rpm
RedHat7x86_64dhcp-devel< 4.2.5-77.el7dhcp-devel-4.2.5-77.el7.x86_64.rpm
RedHat7x86_64dhcp-common< 4.2.5-77.el7dhcp-common-4.2.5-77.el7.x86_64.rpm
RedHat7s390xdhcp-debuginfo< 4.2.5-77.el7dhcp-debuginfo-4.2.5-77.el7.s390x.rpm
RedHat7ppc64ledhcp-libs< 4.2.5-77.el7dhcp-libs-4.2.5-77.el7.ppc64le.rpm
RedHat7ppcdhcp-debuginfo< 4.2.5-77.el7dhcp-debuginfo-4.2.5-77.el7.ppc.rpm
RedHat7s390xdhcp-common< 4.2.5-77.el7dhcp-common-4.2.5-77.el7.s390x.rpm
RedHat7x86_64dhcp< 4.2.5-77.el7dhcp-4.2.5-77.el7.x86_64.rpm
RedHat7i686dhcp-libs< 4.2.5-77.el7dhcp-libs-4.2.5-77.el7.i686.rpm
RedHat7s390dhcp-debuginfo< 4.2.5-77.el7dhcp-debuginfo-4.2.5-77.el7.s390.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	7	x86_64	dhcp-libs	< 4.2.5-77.el7	dhcp-libs-4.2.5-77.el7.x86_64.rpm
RedHat	7	x86_64	dhcp-devel	< 4.2.5-77.el7	dhcp-devel-4.2.5-77.el7.x86_64.rpm
RedHat	7	x86_64	dhcp-common	< 4.2.5-77.el7	dhcp-common-4.2.5-77.el7.x86_64.rpm
RedHat	7	s390x	dhcp-debuginfo	< 4.2.5-77.el7	dhcp-debuginfo-4.2.5-77.el7.s390x.rpm
RedHat	7	ppc64le	dhcp-libs	< 4.2.5-77.el7	dhcp-libs-4.2.5-77.el7.ppc64le.rpm
RedHat	7	ppc	dhcp-debuginfo	< 4.2.5-77.el7	dhcp-debuginfo-4.2.5-77.el7.ppc.rpm
RedHat	7	s390x	dhcp-common	< 4.2.5-77.el7	dhcp-common-4.2.5-77.el7.s390x.rpm
RedHat	7	x86_64	dhcp	< 4.2.5-77.el7	dhcp-4.2.5-77.el7.x86_64.rpm
RedHat	7	i686	dhcp-libs	< 4.2.5-77.el7	dhcp-libs-4.2.5-77.el7.i686.rpm
RedHat	7	s390	dhcp-debuginfo	< 4.2.5-77.el7	dhcp-debuginfo-4.2.5-77.el7.s390.rpm