[ubuntu/oneiric-security] dhcpcd 1:3.2.3-9ubuntu0.1 (Accepted)

Zubin Mithra zubin.mithra at gmail.com
Wed Feb 15 16:03:49 UTC 2012 

dhcpcd (1:3.2.3-9ubuntu0.1) oneiric-security; urgency=high

    * SECURITY UPDATE: dhcpcd before 5.2.12 allows remote attackers to
      execute arbitrary commands via shell metacharacters in a hostname
      obtained from a DHCP message. (LP: #931036)
      - https://build.opensuse.org/package/view_file?file=dhcpcd-3.2.3-option-checks.diff&package=dhcpcd&project=network%3Adhcp&rev=52442e5c1d803d7c1818a920a0bae7f1
      - above linked patch(without the additional support for NETBIOS type
        messages) has been added.
      - CVE-2011-0996

Date: Mon, 13 Feb 2012 14:27:54 +0530
Changed-By: Zubin Mithra <zubin.mithra at gmail.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/oneiric/+source/dhcpcd/1:3.2.3-9ubuntu0.1
-------------- next part --------------
Format: 1.8
Date: Mon, 13 Feb 2012 14:27:54 +0530
Source: dhcpcd
Binary: dhcpcd
Architecture: source
Version: 1:3.2.3-9ubuntu0.1
Distribution: oneiric-security
Urgency: high
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Zubin Mithra <zubin.mithra at gmail.com>
Description: 
 dhcpcd     - DHCP client for automatically configuring IPv4 networking
Launchpad-Bugs-Fixed: 931036
Changes: 
 dhcpcd (1:3.2.3-9ubuntu0.1) oneiric-security; urgency=high
 .
     * SECURITY UPDATE: dhcpcd before 5.2.12 allows remote attackers to
       execute arbitrary commands via shell metacharacters in a hostname
       obtained from a DHCP message. (LP: #931036)
       - https://build.opensuse.org/package/view_file?file=dhcpcd-3.2.3-option-checks.diff&package=dhcpcd&project=network%3Adhcp&rev=52442e5c1d803d7c1818a920a0bae7f1
       - above linked patch(without the additional support for NETBIOS type
         messages) has been added.
       - CVE-2011-0996
Checksums-Sha1: 
 f579b2960a13a269360ebfe41144a96450cc9b8b 1700 dhcpcd_3.2.3-9ubuntu0.1.dsc
 5cc16d1fa41e495ff3ad9db38240f043b75d753e 20576 dhcpcd_3.2.3-9ubuntu0.1.diff.gz
Checksums-Sha256: 
 08e870a60c3b07aeeb3a5524300730a7fe1c5be6f446189863833f3edc6946d0 1700 dhcpcd_3.2.3-9ubuntu0.1.dsc
 7bf41b74dffcb2f27b757e9e048fc3f0325076ad9eb0c63ba0fc9eed73b36d74 20576 dhcpcd_3.2.3-9ubuntu0.1.diff.gz
Files: 
 89a3f6fa16072e76d7e7fa919036ef52 1700 net optional dhcpcd_3.2.3-9ubuntu0.1.dsc
 79174c514ff262f9a426832f51f8b613 20576 net optional dhcpcd_3.2.3-9ubuntu0.1.diff.gz
Original-Maintainer: Simon Kelley <simon at thekelleys.org.uk>

More information about the Oneiric-changes mailing list