Package name
dhcp
Date
2013-04-08
Advisory ID
MDVSA-2013:059
Affected versions
MBS1 x86_64

Problem description

A security issue was identified and fixed in ISC DHCP:

libdns in ISC DHCP 4.2.x before 4.2.5-P1 allows remote name servers to
cause a denial of service (memory consumption) via vectors involving
a regular expression, as demonstrated by a memory-exhaustion attack
against a machine running a dhcpd process, a related issue to
CVE-2013-2266 (CVE-2013-2494).

The updated packages have upgraded to the 4.2.5-P1 version which is
not vulnerable to this issue

Updated packages

MBS1 x86_64

 6a8159afafa10241bf421b24b95ceca3  mbs1/x86_64/dhcp-client-4.2.5P1-1.mbs1.x86_64.rpm
 f16de0392a380d71e56dc4cf29050223  mbs1/x86_64/dhcp-common-4.2.5P1-1.mbs1.x86_64.rpm
 365bb5f71061f58d51ba2d496de78213  mbs1/x86_64/dhcp-devel-4.2.5P1-1.mbs1.x86_64.rpm
 49fee2ee94df8a6cb8480f96ad35e24e  mbs1/x86_64/dhcp-doc-4.2.5P1-1.mbs1.x86_64.rpm
 dc24d1639a10bf06016f516c652519ca  mbs1/x86_64/dhcp-relay-4.2.5P1-1.mbs1.x86_64.rpm
 1aa1a7432988631d1a2bba2c2417b1fa  mbs1/x86_64/dhcp-server-4.2.5P1-1.mbs1.x86_64.rpm 
 a1a63713eb29965669f1d428049ab6b3  mbs1/SRPMS/dhcp-4.2.5P1-1.mbs1.src.rpm

References