|
|
Log in / Subscribe / Register

dhcp: man-in-the-middle attack

Package(s):dhcp CVE #(s):CVE-2011-0997
Created:April 7, 2011 Updated:May 31, 2011
Description: From the Slackware advisory:

In dhclient, check the data for some string options for reasonableness before passing it along to the script that interfaces with the OS. This prevents some possible attacks by a hostile DHCP server.

Alerts:
Gentoo 201301-06 dhcp 2013-01-09
Red Hat RHSA-2011:0840-01 dhcp 2011-05-31
SUSE SUSE-SR:2011:008 java-1_6_0-ibm, java-1_5_0-ibm, java-1_4_2-ibm, postfix, dhcp6, dhcpcd, mono-addon-bytefx-data-mysql/bytefx-data-mysql, dbus-1, libtiff/libtiff-devel, cifs-mount/libnetapi-devel, rubygem-sqlite3, gnutls, libpolkit0, udisks 2011-05-03
Ubuntu USN-1108-2 dhcp3 2011-04-19
SUSE SUSE-SR:2011:007 NetworkManager, OpenOffice_org, apache2-slms, dbus-1-glib, dhcp/dhcpcd/dhcp6, freetype2, kbd, krb5, libcgroup, libmodplug, libvirt, mailman, moonlight-plugin, nbd, openldap2, pure-ftpd, python-feedparser, rsyslog, telepathy-gabble, wireshark 2011-04-19
Fedora FEDORA-2011-0848 dhcp 2011-01-28
CentOS CESA-2011:0428 dhcp 2011-04-14
Fedora FEDORA-2011-4897 dhcp 2011-04-06
Ubuntu USN-1108-1 dhcp3 2011-04-11
Mandriva MDVSA-2011:073 dhcp 2011-04-11
Debian DSA-2217-1 dhcp3 2011-04-10
Debian DSA-2216-1 isc-dhcp 2011-04-10
CentOS CESA-2011:0428 dhcp 2011-04-08
openSUSE openSUSE-SU-2011:0321-1 dhcp 2011-04-08
openSUSE openSUSE-SU-2011:0320-1 dhcp 2011-04-08
Red Hat RHSA-2011:0428-01 dhcp 2011-04-08
Slackware SSA:2011-097-01 dhcp 2011-04-07
Pardus 2011-71 dhcp 2011-05-02
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds