- Quick & dirty update to 4.1-ESV-R2 Not sure about PORTEPOCH bump, but the 4.1 line got somehow rebadged. Changes since 4.1-ESV-R1 ! In dhclient check the data for some string options for reasonableness before passing it along to the script that interfaces with the OS. [ISC-Bugs #23722] CVE: CVE-2011-0997 Changes since 4.1-ESV ! When processing a request in the DHCPv6 server code that specifies an address that is tagged as abandoned (meaning we received a decline request for it previously) don't attempt to move it from the inactive to active pool as doing so can result in the server crshing on an assert failure. Also retag the lease as active and reset it's timeout value. [ISC-Bugs #21921] (4.1-ESV seems to be re-badged 4.1.2-P1 we have in ports) Port maintainer (douglas@douglasthrift.net) is cc'd. Generated with FreeBSD Port Tools 0.99
Maintainer of net/isc-dhcp41-server, Please note that PR ports/156246 has just been submitted. If it contains a patch for an upgrade, an enhancement or a bug fix you agree on, reply to this email stating that you approve the patch and a committer will take care of it. The full text of the PR can be found at: http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/156246 -- Edwin Groothuis via the GNATS Auto Assign Tool edwin@FreeBSD.org
State Changed From-To: open->feedback Awaiting maintainers feedback (via the GNATS Auto Assign Tool)
On 4/7/2011 4:10 AM, Edwin Groothuis wrote: > Maintainer of net/isc-dhcp41-server, > > Please note that PR ports/156246 has just been submitted. > > If it contains a patch for an upgrade, an enhancement or a bug fix > you agree on, reply to this email stating that you approve the patch > and a committer will take care of it. > > The full text of the PR can be found at: > http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/156246 > Hello, I was already working on this update and I have attached my patch that should be applied instead. Thanks! -- Douglas William Thrift <douglas@douglasthrift.net> <http://douglasthrift.net/>
Responsible Changed From-To: freebsd-ports-bugs->wxs I'll take it.
I've attached a patch for the VuXML port which describes this CVE. -- Douglas William Thrift <douglas@douglasthrift.net> <http://douglasthrift.net/>
wxs 2011-04-10 21:39:37 UTC FreeBSD ports repository Modified files: security/vuxml vuln.xml Log: Document isc-dhcp41-client and isc-dhcp31-client vulnerabilities. PR: ports/156246 Submitted by: Douglas Thrift <douglas@douglasthrift.net> Revision Changes Path 1.2340 +35 -1 ports/security/vuxml/vuln.xml _______________________________________________ cvs-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/cvs-all To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
wxs 2011-04-10 21:40:52 UTC FreeBSD ports repository Modified files: net/isc-dhcp41-server Makefile distinfo Log: Update to the latest ESV release to address security vulnerability. PR: ports/156246 Submitted by: Douglas Thrift <douglas@douglasthrift.net> Security: 7e69f00d-632a-11e0-9f3a-001d092480a4 Revision Changes Path 1.19 +12 -9 ports/net/isc-dhcp41-server/Makefile 1.6 +2 -2 ports/net/isc-dhcp41-server/distinfo _______________________________________________ cvs-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/cvs-all To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
State Changed From-To: feedback->closed Committed, with minor changes. Thanks!