lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <20071023200913.GS7963@outflux.net>
Date: Tue, 23 Oct 2007 13:09:13 -0700
From: Kees Cook <kees@...ntu.com>
To: ubuntu-security-announce@...ts.ubuntu.com
Cc: bugtraq@...urityfocus.com, full-disclosure@...ts.grok.org.uk
Subject: [USN-531-2] dhcp vulnerability

=========================================================== 
Ubuntu Security Notice USN-531-2           October 23, 2007
dhcp vulnerability
CVE-2007-5365
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS
Ubuntu 6.10
Ubuntu 7.04
Ubuntu 7.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 6.06 LTS:
  dhcp                            2.0pl5-19.4ubuntu0.2

Ubuntu 6.10:
  dhcp                            2.0pl5-19.4ubuntu1.2

Ubuntu 7.04:
  dhcp                            2.0pl5-19.5ubuntu2.2

Ubuntu 7.10:
  dhcp                            2.0pl5dfsg1-20ubuntu1.2

In general, a standard system upgrade is sufficient to affect the
necessary changes.

Details follow:

USN-531-1 fixed vulnerabilities in dhcp.  The fixes were incomplete,
and only reduced the scope of the vulnerability, without fully solving
it. This update fixes the problem.

Original advisory details:

 Nahuel Riva and Gerardo Richarte discovered that the DHCP server did not
 correctly handle certain client options. A remote attacker could send
 malicious DHCP replies to the server and execute arbitrary code.


Updated packages for Ubuntu 6.06 LTS:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp_2.0pl5-19.4ubuntu0.2.diff.gz
      Size/MD5:   108361 26e4711d0e61071ed8f62e852fbdc0fa
    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp_2.0pl5-19.4ubuntu0.2.dsc
      Size/MD5:      691 083cb6f6f41743935cd80a27ea8b3592
    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp_2.0pl5.orig.tar.gz
      Size/MD5:   294909 ab22f363a7aff924e2cc9d1019a21498

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp-client-udeb_2.0pl5-19.4ubuntu0.2_amd64.udeb
      Size/MD5:    47330 3825287312fbf048e30b5781f973ba43
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5-19.4ubuntu0.2_amd64.deb
      Size/MD5:   109694 360a1774423c682bbaaa96a4cc72c756
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5-19.4ubuntu0.2_amd64.deb
      Size/MD5:    76834 32466b1afa0f1f72b3fbf69670b67ce5
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5-19.4ubuntu0.2_amd64.deb
      Size/MD5:   115904 fc0773a8e0aeb70487fe59dfed8d9cea

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp-client-udeb_2.0pl5-19.4ubuntu0.2_i386.udeb
      Size/MD5:    41288 6a0a95f369fd7f30c8ae0c1c5118d4a6
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5-19.4ubuntu0.2_i386.deb
      Size/MD5:   103824 3a6ba843ca9a7ecb743dd46dfae1859e
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5-19.4ubuntu0.2_i386.deb
      Size/MD5:    73004 7946aac040d53bdab34d209ab48ce4c9
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5-19.4ubuntu0.2_i386.deb
      Size/MD5:   110226 e50edade34242d83873ad47d173172dc

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp-client-udeb_2.0pl5-19.4ubuntu0.2_powerpc.udeb
      Size/MD5:    43658 cecfee6211b9d314c9e2262addc2a9d3
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5-19.4ubuntu0.2_powerpc.deb
      Size/MD5:   106242 923e762e02761705c6f5a82fa50ee986
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5-19.4ubuntu0.2_powerpc.deb
      Size/MD5:    74942 49a9ea8c3510a35bb68de01439ad3afa
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5-19.4ubuntu0.2_powerpc.deb
      Size/MD5:   112508 cf9b93a0f8068dfcb57682f69115a26d

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp-client-udeb_2.0pl5-19.4ubuntu0.2_sparc.udeb
      Size/MD5:    43846 b82c02c8b0201b360e2ac0568771fe11
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5-19.4ubuntu0.2_sparc.deb
      Size/MD5:   106594 f9354c07f2c662747a08f4fbabbb24ba
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5-19.4ubuntu0.2_sparc.deb
      Size/MD5:    75090 397769136dbaf1b560f4eab246782552
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5-19.4ubuntu0.2_sparc.deb
      Size/MD5:   113012 05e061214e2dfe6788ec7b6259781204

Updated packages for Ubuntu 6.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp_2.0pl5-19.4ubuntu1.2.diff.gz
      Size/MD5:   108593 794177cbbaf7e5cd59b28c1b844112d2
    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp_2.0pl5-19.4ubuntu1.2.dsc
      Size/MD5:      691 25a4051d656b570ebdcb684c6ba1ffd7
    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp_2.0pl5.orig.tar.gz
      Size/MD5:   294909 ab22f363a7aff924e2cc9d1019a21498

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp-client-udeb_2.0pl5-19.4ubuntu1.2_amd64.udeb
      Size/MD5:    48108 460faf9cabfdb25d3653f6b50a16bd59
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5-19.4ubuntu1.2_amd64.deb
      Size/MD5:   110536 9a23e777d8355dc3966e6285c90806d3
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5-19.4ubuntu1.2_amd64.deb
      Size/MD5:    77522 5be8c26e18afa6020e1a9ee40b29bc9d
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5-19.4ubuntu1.2_amd64.deb
      Size/MD5:   116996 943a8c08cdeedc23dfdb9a9f6956b79b

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp-client-udeb_2.0pl5-19.4ubuntu1.2_i386.udeb
      Size/MD5:    42384 e0f40caa5c697208c56ac099af9c9c83
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5-19.4ubuntu1.2_i386.deb
      Size/MD5:   104924 bf3a6f6ea887f2144fe4a4b69a12f1a9
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5-19.4ubuntu1.2_i386.deb
      Size/MD5:    73928 0e3f588a9b09fd77b45367af503c4cfb
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5-19.4ubuntu1.2_i386.deb
      Size/MD5:   111620 34f2e4e78c3aee92f30337ba61561ea2

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp-client-udeb_2.0pl5-19.4ubuntu1.2_powerpc.udeb
      Size/MD5:    44122 af396c9f23f38fcf880bd777bb07359a
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5-19.4ubuntu1.2_powerpc.deb
      Size/MD5:   106872 1a2e18a4a20919353cad7237b957b087
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5-19.4ubuntu1.2_powerpc.deb
      Size/MD5:    75530 2a3e8df8de66d7e60dea9fc8c240bfa7
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5-19.4ubuntu1.2_powerpc.deb
      Size/MD5:   113064 a9bec0c92a325b46feee6ed70ef18bd8

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp-client-udeb_2.0pl5-19.4ubuntu1.2_sparc.udeb
      Size/MD5:    45210 e621d61253a21448988cbe90baefcdce
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5-19.4ubuntu1.2_sparc.deb
      Size/MD5:   107950 e5f27c154651caf2d8a746588e5dcf6b
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5-19.4ubuntu1.2_sparc.deb
      Size/MD5:    76222 c08bed7bd1315bdcb5143965bd9fd422
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5-19.4ubuntu1.2_sparc.deb
      Size/MD5:   114518 674ddd4ee3785ddf86e226f5e7b0b7d7

Updated packages for Ubuntu 7.04:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp_2.0pl5-19.5ubuntu2.2.diff.gz
      Size/MD5:   109134 30b57e077227da9e0f0ee06159307f20
    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp_2.0pl5-19.5ubuntu2.2.dsc
      Size/MD5:      775 023ad71a705e9e5508ceec75c34e8abb
    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp_2.0pl5.orig.tar.gz
      Size/MD5:   294909 ab22f363a7aff924e2cc9d1019a21498

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp-client-udeb_2.0pl5-19.5ubuntu2.2_amd64.udeb
      Size/MD5:    48152 7b368426b324390f3af6fd41c0f1e29d
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5-19.5ubuntu2.2_amd64.deb
      Size/MD5:   110846 2596aee31c82a1bf32791dfbb552553e
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5-19.5ubuntu2.2_amd64.deb
      Size/MD5:    77830 ecc0f821e144112d21dee92ef84419da
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5-19.5ubuntu2.2_amd64.deb
      Size/MD5:   117298 d843ec195a69d2fd6635a7f931c12173

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp-client-udeb_2.0pl5-19.5ubuntu2.2_i386.udeb
      Size/MD5:    42394 b1ca27147853d1b338476d4754543d29
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5-19.5ubuntu2.2_i386.deb
      Size/MD5:   105190 5ea6dbf0338de08695a5a5bbbb125685
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5-19.5ubuntu2.2_i386.deb
      Size/MD5:    74268 9f0edb3eb5130e4f77a2f434fed6def1
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5-19.5ubuntu2.2_i386.deb
      Size/MD5:   111950 93a56ea5baf4a6de9f7d58da30aa8178

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp-client-udeb_2.0pl5-19.5ubuntu2.2_powerpc.udeb
      Size/MD5:    45220 78a104add781d7aaaec5a7f99f6e521d
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5-19.5ubuntu2.2_powerpc.deb
      Size/MD5:   108186 c28f054f61fb21ab203e55bb0606205d
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5-19.5ubuntu2.2_powerpc.deb
      Size/MD5:    76594 d82c42098eb9a16369ee1d1503b02e7a
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5-19.5ubuntu2.2_powerpc.deb
      Size/MD5:   114322 11c566afec960192bdeccda56d61699f

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/main/d/dhcp/dhcp-client-udeb_2.0pl5-19.5ubuntu2.2_sparc.udeb
      Size/MD5:    45762 b3332f76f7ca9ff51c5624903a6209ad
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5-19.5ubuntu2.2_sparc.deb
      Size/MD5:   108630 4fdded64c7bf5c689f7954e45e77bec8
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5-19.5ubuntu2.2_sparc.deb
      Size/MD5:    76852 dd4710d664a6c71badf2a8ce626f488a
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5-19.5ubuntu2.2_sparc.deb
      Size/MD5:   115310 bb677949a2141fc78a29e49085aae0ef

Updated packages for Ubuntu 7.10:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5dfsg1-20ubuntu1.2.diff.gz
      Size/MD5:    58494 af23e0b22a58ecfb6826a622df612faa
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5dfsg1-20ubuntu1.2.dsc
      Size/MD5:      734 d5b4ce2e0c39dd17eb48e1f0de38a00b
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5dfsg1.orig.tar.gz
      Size/MD5:   244890 0e1a88fe2e55c310f1a2f9150f4aeeee

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client-udeb_2.0pl5dfsg1-20ubuntu1.2_amd64.udeb
      Size/MD5:    48466 2bb62fd8661a2403f765aced65995af4
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5dfsg1-20ubuntu1.2_amd64.deb
      Size/MD5:   110902 f4c4b35b91942e8a4ffa2885ce3d680e
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5dfsg1-20ubuntu1.2_amd64.deb
      Size/MD5:    77758 ac413a618a225181cb24ee21fa103c58
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5dfsg1-20ubuntu1.2_amd64.deb
      Size/MD5:   117188 3b7a32a62686a3f0e0608da5359a24ae

  i386 architecture (x86 compatible Intel/AMD):

    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client-udeb_2.0pl5dfsg1-20ubuntu1.2_i386.udeb
      Size/MD5:    42388 19218b0b50c3e44bcef3ecf209234287
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5dfsg1-20ubuntu1.2_i386.deb
      Size/MD5:   104910 04e44bd7ceec3f3075f8b2adc6ee7446
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5dfsg1-20ubuntu1.2_i386.deb
      Size/MD5:    73978 427049efd4b160d2bf0096e9da75d49f
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5dfsg1-20ubuntu1.2_i386.deb
      Size/MD5:   111660 5b498322836d5577db761511bb0c93fe

  powerpc architecture (Apple Macintosh G3/G4/G5):

    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client-udeb_2.0pl5dfsg1-20ubuntu1.2_powerpc.udeb
      Size/MD5:    45200 b5ba3dc2693e33ab00110f43ed82fcf8
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5dfsg1-20ubuntu1.2_powerpc.deb
      Size/MD5:   107792 e76086f088b8a2ad4cd2a565cb60d407
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5dfsg1-20ubuntu1.2_powerpc.deb
      Size/MD5:    76270 0af141e493c13f7fb055a5204bc8862f
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5dfsg1-20ubuntu1.2_powerpc.deb
      Size/MD5:   114034 0fd34e5c2a0cd28511942eb0763fb0f6

  sparc architecture (Sun SPARC/UltraSPARC):

    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client-udeb_2.0pl5dfsg1-20ubuntu1.2_sparc.udeb
      Size/MD5:    45772 cc24dfd77bae3efca63515edbe5e76e0
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-client_2.0pl5dfsg1-20ubuntu1.2_sparc.deb
      Size/MD5:   108362 d02344a41aa3a55960075a45624cde33
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp-relay_2.0pl5dfsg1-20ubuntu1.2_sparc.deb
      Size/MD5:    76584 038af0579f53b942299c4db9f46a389d
    http://security.ubuntu.com/ubuntu/pool/universe/d/dhcp/dhcp_2.0pl5dfsg1-20ubuntu1.2_sparc.deb
      Size/MD5:   114962 e2f9a3572d44f4ca69f527a192ea93a7


Download attachment "signature.asc" of type "application/pgp-signature" (190 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ