Security update for wicked (important)

2020-02-05T00:11:39
ID OPENSUSE-SU-2020:0165-1
Type suse
Reporter Suse
Modified 2020-02-05T00:11:39

Description

This update for wicked fixes the following issues:

  • CVE-2019-18902: Fixed a use-after-free when receiving invalid DHCP6 client options (bsc#1160903).
  • CVE-2020-7216: Fixed a potential denial of service via a memory leak when processing packets with missing message type option in DHCP4 (bsc#1160905).

This update was imported from the SUSE:SLE-15-SP1:Update update project.