【TWCERT/CC安全通报】TW-CA-2005-04 - NetSecurity板

发信人[email protected] (And I Love You So...),

看板NetSecurity

标题【TWCERT/CC安全通报】TW-CA-2005-043-[RHSA-2005:212-01: Moderate: dhcp

发信站KKCITY (Fri Apr 15 17:52:30 2005)

转信站ptt!ctu-reader!ctu-peer!news.nctu!netnews.chu!Leo.mi.chu!zoonews.ee.nt

※ 本文转录自 [Lan] 信箱作者: [email protected] (TWCERT/CC Fellows) 标题: 【TWCERT/CC安全通报】TW-CA-2005-04 时间: Fri Apr 15 16:11:05 2005 -----BEGIN PGP SIGNED MESSAGE----- TW-CA-2005-043-[RHSA-2005:212-01: Moderate: dhcp security update] ──────────────────────────────────────── TWCERT/CC发布日期：2005-04-15 原漏洞发布日期：2005-04-12 原漏洞最新更新日期：-- 通用安全漏洞编号：CAN-2004-1006 分类：Dos,Gain Privilege 来源参考：RHSA-2005:212-01 ──── 简述 ───────────────────────────────── 更新 Red Hat Enterprise Linux 2.1 的 dhcp 套件，修正一个字串格式问题。 Red Hat Security Response Team 将此列为中度的安全更新。 ──── 说明 ───────────────────────────────── dhcp 套件提供 ISC 动态主机规划配置协定（DHCP）伺服器的功能，另外 dhcpd 也是个转发的媒介。DHCP 是个让设备可从伺服器端取得网路设定资讯的协定。在 dhcpd 日志错误讯息中发现一个错误。恶意的 DNS 伺服器可以传送一个精心设计的 DNS 转送要求，导致 dhcpd 瘫痪或执行任意程式码。CVE (cve.mitre.org) 已将此问题命名为 CAN-2005-0446。建议 dhcpd 使用者更新此勘误套件，内含修补档案，可防止使用者受这些弱点影响。 ──── 影响平台 ─────────────────────────────── ‧Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64 ‧Red Hat Linux Advanced Workstation 2.1 - ia64 ‧Red Hat Enterprise Linux ES version 2.1 - i386 ──── 修正方式 ─────────────────────────────── 在安装更新之前，确定已安装之前所有跟系统相关的错误修正。使用 Red Hat Network 来下载及更新套件，输入以下指令启动 Red Hat Update Agent： up2date 若要获得更多手动安装套件的资讯，请参阅下面网址，寻求适合您系统的指引手册： http://www.redhat.com/docs/manuals/enterprise/ Bug IDs fixed（详见 http://bugzilla.redhat.com/）： 149513 - CAN-2004-1006 dhcp 字串格式问题 RPM 需求： Red Hat Enterprise Linux AS (Advanced Server) version 2.1: SRPMS: ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/dhcp-2.0pl5-9.src.rpm 927826387feaf4ae2adde7202a94379e dhcp-2.0pl5-9.src.rpm i386: 0eb5f32af8caf92da9b1b9cb9a06d690 dhcp-2.0pl5-9.i386.rpm ia64: aea9d86d108f3e113816073c60cf9d67 dhcp-2.0pl5-9.ia64.rpm Red Hat Linux Advanced Workstation 2.1: SRPMS: ftp://updates.redhat.com/enterprise/2.1AW/en/os/SRPMS/dhcp-2.0pl5-9.src.rpm 927826387feaf4ae2adde7202a94379e dhcp-2.0pl5-9.src.rpm ia64: aea9d86d108f3e113816073c60cf9d67 dhcp-2.0pl5-9.ia64.rpm Red Hat Enterprise Linux ES version 2.1: SRPMS: ftp://updates.redhat.com/enterprise/2.1ES/en/os/SRPMS/dhcp-2.0pl5-9.src.rpm 927826387feaf4ae2adde7202a94379e dhcp-2.0pl5-9.src.rpm i386: 0eb5f32af8caf92da9b1b9cb9a06d690 dhcp-2.0pl5-9.i386.rpm 这些套件基於安全理由，均由 Red Hat 公司使用 GPG 签章，可至下列网址取得 key： https://www.redhat.com/security/team/key.html#package ──── 影响结果 ─────────────────────────────── ──── 联络TWCERT/CC ───────────────────────────── Tel: 886-7-5250211 FAX: 886-7-5250212 886-2-23563303 886-2-23924082 Email: [email protected] URL: http://www.cert.org.tw/ PGP key: http://www.cert.org.tw/eng/pgp.htm ──────────────────────────────────────── 附件：[Moderate: dhcp security update] ──── 原文 ───────────────────────────────── - - --------------------------------------------------------------------- Red Hat Security Advisory Synopsis: Moderate: dhcp security update Advisory ID: RHSA-2005:212-01 Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-212.html Issue date: 2005-04-12 Updated on: 2005-04-12 Product: Red Hat Enterprise Linux CVE Names: CAN-2004-1006 - - --------------------------------------------------------------------- 1. Summary: An updated dhcp package that fixes a string format issue is now available for Red Hat Enterprise Linux 2.1. This update has been rated as having moderate security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64 Red Hat Linux Advanced Workstation 2.1 - ia64 Red Hat Enterprise Linux ES version 2.1 - i386 3. Problem description: The dhcp package provides the ISC Dynamic Host Configuration Protocol (DHCP) server and relay agent, dhcpd. DHCP is a protocol that allows devices to get their own network configuration information from a server. A bug was found in the way dhcpd logs error messages. A malicious DNS server could send a carefully crafted DNS reply and cause dhcpd to crash or possibly execute arbitrary code. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0446 to this issue. All users of dhcp should upgrade to this updated package, which contains a backported patch and is not vulnerable to this issue. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command: up2date For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system: http://www.redhat.com/docs/manuals/enterprise/ 5. Bug IDs fixed (http://bugzilla.redhat.com/): 149513 - CAN-2004-1006 dhcp string format issue 6. RPMs required: Red Hat Enterprise Linux AS (Advanced Server) version 2.1: SRPMS: ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/dhcp-2.0pl5-9.src.rpm 927826387feaf4ae2adde7202a94379e dhcp-2.0pl5-9.src.rpm i386: 0eb5f32af8caf92da9b1b9cb9a06d690 dhcp-2.0pl5-9.i386.rpm ia64: aea9d86d108f3e113816073c60cf9d67 dhcp-2.0pl5-9.ia64.rpm Red Hat Linux Advanced Workstation 2.1: SRPMS: ftp://updates.redhat.com/enterprise/2.1AW/en/os/SRPMS/dhcp-2.0pl5-9.src.rpm 927826387feaf4ae2adde7202a94379e dhcp-2.0pl5-9.src.rpm ia64: aea9d86d108f3e113816073c60cf9d67 dhcp-2.0pl5-9.ia64.rpm Red Hat Enterprise Linux ES version 2.1: SRPMS: ftp://updates.redhat.com/enterprise/2.1ES/en/os/SRPMS/dhcp-2.0pl5-9.src.rpm 927826387feaf4ae2adde7202a94379e dhcp-2.0pl5-9.src.rpm i386: 0eb5f32af8caf92da9b1b9cb9a06d690 dhcp-2.0pl5-9.i386.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package 7. References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1006 8. Contact: The Red Hat security contact is <[email protected]>. More contact details at https://www.redhat.com/security/team/contact/ ──────────────────────────────────────── -----BEGIN PGP SIGNATURE----- Version: PGP 7.0.4 iQEVAwUBQl92WKcyQYefg2/NAQFB+wf/Q2XWyjxRAABsts2QbaCgeMLn2Z7NJm9p Sl9oDj5tqr+OXT2UVN/tsFHO7o9SRZt592GZ17h7PsThAF825rGcdQAVdi5+9Uv2 /WWi3uJRscvszc3AwD8pBJztSB7n1yq9aoSNNTwp0Veo2XUJnqsVfyaqaXrCrqLg NUawPLn/vPjBC+Ohzon12OJj7rCiI1Nre5G94cMsFDow6pi11x+TA6OPgcidabpi LZP9jAlgFnRuVcwIxWN3a3BpzUkyZTyjmOF1qIgMXJyxGgqHMmc2y/XB9uyu3kqu DdikRj6I/wvptLgeQQ6attKGOBw2YNnVWIp4o5JIfNlY4fw0MEEU+g== =Mggs -----END PGP SIGNATURE----- -- Taiwan Computer Emergency Response Team Security Advisory mailing list. Mail to : [email protected] and include a line "subscribe advisory". Please visit http://www.cert.org.tw/. PGP key : http://www.cert.org.tw/eng/pgp.htm

	[问题/行为] 猫晚上进房间会不会有憋尿问题
	Re: [闲聊] 选了错误的女孩成为魔法少女 XDDDDDDDDDD
	[正妹] 瑞典一张
	[心得] EMS高领长版毛衣.墨小楼MC1002
	[分享] 丹龙隔热纸GE55+33+22
	[问题] 清洗洗衣机
	[寻物] 窗台下的空间
	[闲聊] 双极の女神1 木魔爵
	[售车] 新竹 1997 march 1297cc 白色四门
	[讨论] 能从照片感受到摄影者心情吗
	[狂贺] 贺贺贺贺贺！岛村卯月！总选举NO.1
	[难过] 羡慕白皮肤的女生
	阅读文章
	[黑特]
	[问题] SBK S1安装於安全帽位置
	[分享] 旧woo100绝版开箱!!
	Re: [无言] 关於小包卫生纸
	[开箱] E5-2683V3 RX480Strix 快睿C1 简单测试
	[心得] 苍の海贼龙地狱执行者16PT
	[售车] 1999年Virage iO 1.8EXi
	[心得] 挑战33 LV10 狮子座pt solo
	[闲聊] 手把手教你不被桶之新手主购教学
	[分享] Civic Type R 量产版官方照无预警流出
	[售车] Golf 4 2.0 银色自排
	[出售] Graco提篮汽座（有底座）2000元诚可议
	[问题] 请问补牙材质掉了还能再补吗?(台中半年内
	[问题] 44th 单曲生写竟然都给重复的啊啊！
	[心得] 华南红卡/icash 核卡
	[问题] 拔牙矫正这样正常吗
	[赠送] 老莫高业初业 102年版
	[情报] 三大行动支付本季掀战火
	[宝宝] 博客来Amos水蜡笔5/1特价五折
	Re: [心得] 新鲜人一些面试分享
	[心得] 苍の海贼龙地狱麒麟25PT
	Re: [闲聊] (君の名は。雷慎入) 君名二创漫画翻译
	Re: [闲聊] OGN中场影片：失踪人口局 (英文字幕)
	[问题] 台湾大哥大4G讯号差
	[出售] [全国]全新千寻侘草LED灯, 水草

WEB批踢踢(PTT)

NetSecurity 板

热门看板

赞助商连结