CentOS Update For Dhclient CESA-2011:1819 Centos6 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

The Dynamic Host Configuration Protocol (DHCP) is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. A denial of service flaw was found in the way the dhcpd daemon handled DHCP request packets when regular expression matching was used in &quot /etc/dhcp/dhcpd.conf&quot . A remote attacker could use this flaw to crash dhcpd. (CVE-2011-4539) Users of DHCP should upgrade to these updated packages, which contain a backported patch to correct this issue. After installing this update, all DHCP servers will be restarted automatically.

Affected

dhclient on CentOS 6

References

http://lists.centos.org/pipermail/centos-announce/2011-December/018339.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-4539

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

CentOS Security Advisory CESA-2009:0373 (systemtap)
CentOS Update for 389-ds-base CESA-2013:0503 centos6
CentOS Security Advisory CESA-2009:1572 (4Suite)
CentOS Security Advisory CESA-2009:1455 (kernel)
CentOS Security Advisory CESA-2009:0010 (squirrelmail)

CentOS Update for dhclient CESA-2011:1819 centos6

Take action and discover your vulnerabilities