[SECURITY] Fedora 12 Update: dhcp-4.1.1-17.P1.fc12

Thu Jun 24 16:27:50 UTC 2010

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-9479
2010-06-03 17:19:26
--------------------------------------------------------------------------------

Name        : dhcp
Product     : Fedora 12
Version     : 4.1.1
Release     : 17.P1.fc12
URL         : http://isc.org/products/DHCP/
Summary     : Dynamic host configuration protocol software
Description :
DHCP (Dynamic Host Configuration Protocol) is a protocol which allows
individual devices on an IP network to get their own network
configuration information (IP address, subnetmask, broadcast address,
etc.) from a DHCP server. The overall purpose of DHCP is to make it
easier to administer a large network.  The dhcp package includes the
ISC DHCP service and relay agent.

To use DHCP on your network, install a DHCP service (or relay agent),
and on clients run a DHCP client daemon.  The dhcp package provides
the ISC DHCP service and relay agent.

--------------------------------------------------------------------------------
Update Information:

This is a patch release of ISC DHCP 4.1.1,  which contains a pair of bug fixes
including one for a security related bug.
http://ftp.isc.org/isc/dhcp/dhcp-4.1.1-P1-RELNOTES
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun  3 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-17.P1
- 4.1.1-P1 (pair of bug fixes including one for a security related bug).
- Compile with -fno-strict-aliasing
- N-V-R (copied from bind.spec): Name-Version-Release.Patch.dist
* Wed Apr 28 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-16
- Move /etc/NetworkManager/dispatcher.d/10-dhclient script
  from dhcp to dhclient subpackage (#586999).
* Wed Apr 21 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-15
- If the Reply was received in response to Renew or Rebind message,
  client adds any new addresses in the IA option to the IA (#578097)
* Mon Apr 19 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-14
- Fill in Elapsed Time Option in Release/Decline messages (#582939)
* Thu Mar 25 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-13
- In client initiated message exchanges stop retransmission
  upon reaching the MRD rather than at some point after it (#559153)
* Wed Mar 24 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-12
- In dhclient-script check whether bound address
  passed duplicate address detection (DAD) (#559147)
- If the bound address failed DAD (is found to be in use on the link),
  the dhcpv6 client sends a Decline message to the server
  as described in section 18.1.7 of RFC-3315 (#559147)
* Fri Mar 19 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-11
- Fix UseMulticast.patch to not repeatedly parse dhcpd.conf for unicast option
- Fix dhclient-script to set interface MTU only when it's greater than 576 (#574629)
* Fri Mar 12 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-10
- Discard unicast Request/Renew/Release/Decline message
  (unless we set unicast option) and respond with Reply
  with UseMulticast Status Code option (#573090)
- Remove DHCPV6 OPERATION section from dhclient.conf.5
  describing deprecated 'send dhcp6.oro' syntax
* Thu Feb 25 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-9
- Fix paths in man pages (#568031)
- Remove odd tests in %preun
* Mon Feb 22 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-8
- Add interface-mtu to the list of default requested DHCP options (#566873)
* Fri Feb 19 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-7
- Fix pm-utils/sleep.d/ directory ownership conflict
* Thu Feb 18 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-6
- Fix installation of pm-utils script (#479639, c#16)
* Mon Feb  8 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-5
- Fix dhclient-decline-backoff.patch (#562854)
* Fri Feb  5 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-4
- Fix dhclient-script to delete address which the client is going to release
  as soon as it begins the Release message exchange process (#559142)
* Wed Feb  3 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-3
- move /etc/dhcp.conf to /etc/dhcp.conf.rpmsave in %post (#561094)
- document -nc option in dhclient(8) man page
* Tue Feb  2 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-2
- Fix capability patch (#546765)
* Thu Jan 21 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.1-1
- Upgraded to ISC dhcp-4.1.1
* Mon Jan 18 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.0p1-17
- Hide startup info when starting dhcpd6 service.
- Use macro global instead of define.
- Remove -TERM from calling killproc when stopping dhcrelay (#555672)
* Fri Jan 15 2010 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.0p1-16
- Added init script to also start dhcpd for IPv6 (#552453)
- Added dhcpd6.conf.sample
* Mon Dec 14 2009 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.0p1-15
- dhclient logs its pid to make troubleshooting NM managed systems
  with multiple dhclients running easier (#546792)
* Mon Nov 23 2009 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.0p1-14
- Honor DEFROUTE=yes|no for all connection types (#530209)
* Fri Oct 30 2009 Jiri Popelka <jpopelka at redhat.com> - 12:4.1.0p1-13
- Make dhclient-script add IPv6 address to interface (#531997)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #601403 - CVE-2010-2156 dhcp: remote DoS via zero-length client ID
        https://bugzilla.redhat.com/show_bug.cgi?id=601403
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update dhcp' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------