CentOS Local Security Checks : CentOS: Security Advisory for dhclient (CESA-2021:2357)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 146377 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.883350

Kategorie: CentOS Local Security Checks

Titel: CentOS: Security Advisory for dhclient (CESA-2021:2357)

Zusammenfassung: The remote host is missing an update for the 'dhclient'; package(s) announced via the CESA-2021:2357 advisory.

Beschreibung: Summary:
The remote host is missing an update for the 'dhclient'
package(s) announced via the CESA-2021:2357 advisory.

Vulnerability Insight:
The Dynamic Host Configuration Protocol (DHCP) is a protocol that allows
individual devices on an IP network to get their own network configuration
information, including an IP address, a subnet mask, and a broadcast
address. The dhcp packages provide a relay agent and ISC DHCP service
required to enable and administer DHCP on a network.

Security Fix(es):

* dhcp: stack-based buffer overflow when parsing statements with
colon-separated hex digits in config or lease files in dhcpd and dhclient
(CVE-2021-25217)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

Affected Software/OS:
'dhclient' package(s) on CentOS 7.

Solution:
Please install the updated package(s).

CVSS Score:
3.3

CVSS Vector:
AV:A/AC:L/Au:N/C:N/I:N/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2021-25217
https://kb.isc.org/docs/cve-2021-25217
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z2LB42JWIV4M4WDNXX5VGIP26FEYWKIF/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5QI4DYC7J4BGHEW3NH4XHMWTHYC36UK4/
https://security.gentoo.org/glsa/202305-22
https://lists.debian.org/debian-lts-announce/2021/06/msg00002.html
http://www.openwall.com/lists/oss-security/2021/05/26/6

Copyright Copyright (C) 2021 Greenbone Networks GmbH

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.883350
Kategorie:	CentOS Local Security Checks
Titel:	CentOS: Security Advisory for dhclient (CESA-2021:2357)
Zusammenfassung:	The remote host is missing an update for the 'dhclient'; package(s) announced via the CESA-2021:2357 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'dhclient' package(s) announced via the CESA-2021:2357 advisory. Vulnerability Insight: The Dynamic Host Configuration Protocol (DHCP) is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and administer DHCP on a network. Security Fix(es): * dhcp: stack-based buffer overflow when parsing statements with colon-separated hex digits in config or lease files in dhcpd and dhclient (CVE-2021-25217) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Affected Software/OS: 'dhclient' package(s) on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 3.3 CVSS Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2021-25217 https://kb.isc.org/docs/cve-2021-25217 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z2LB42JWIV4M4WDNXX5VGIP26FEYWKIF/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5QI4DYC7J4BGHEW3NH4XHMWTHYC36UK4/ https://security.gentoo.org/glsa/202305-22 https://lists.debian.org/debian-lts-announce/2021/06/msg00002.html http://www.openwall.com/lists/oss-security/2021/05/26/6
Copyright	Copyright (C) 2021 Greenbone Networks GmbH