[Bug 777785] Re: Multiple domains in domain-search not working after CVE-2011-0997 patch

[Tilghman Lesher]

I'm having the same issue.  I suspect the problem is that I'm using an
older version of dhcpd that does not have the "domain-search" option
available.  Instead, I'm using the prior notation of:

option domain-name-search code 119 = text;
option domain-name-search "company1.com company2.com company3.com";

This works for all other hosts except Natty, which presents the same
error as above.  For compatibility reasons, I cannot upgrade the DHCP
server on that host.  A Natty system should be able to handle the
historic specification without errors.

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to isc-dhcp in Ubuntu.
https://bugs.launchpad.net/bugs/777785

Title:
  Multiple domains in domain-search not working after CVE-2011-0997
  patch

Status in “isc-dhcp” package in Ubuntu:
  Invalid

Bug description:
  What you expected to happen:
  Add domains-search domains from /etc/dhcp/dhclient.conf to search line in /etc/resolv.conf

  What happened instead:
  After upgrading to natty multiple domain search in /etc/resolv.conf stopped working.

  Example entry in /etc/dhcp/dhclient.conf -> append domain-search
  "subdomain1.company.com subdomain2.company.com company.com";

  Error message in /var/log/syslog -> dhclient: suspect value in
  domain_search option - discarded

  Repackaging isc-dhcp without the CVE-2011-0997 solves the domain
  search issue, but leaves the system with a known security
  vulnerability.

  Version: isc-dhcp-client_4.1.1-P1-15ubuntu9
  Arch: amd64

  lsb_release -rd
  Description:    Ubuntu 11.04
  Release:        11.04

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/isc-dhcp/+bug/777785/+subscriptions