-
dhcp3 (3.0.6.dfsg-1ubuntu9.3) hardy-security; urgency=low
* SECURITY UPDATE: denial of service via specially crafted packets
- debian/patches/CVE-2011-2748-2749.dpatch: tighten up restriction in
common/discover.c, properly calculate length in common/options.c,
validate packet->options in server/dhcp.c.
- CVE-2011-2748
- CVE-2011-2749
-- Marc Deslauriers <email address hidden> Thu, 11 Aug 2011 11:54:18 -0400
-
dhcp3 (3.0.6.dfsg-1ubuntu9.2) hardy-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via crafted hostname
- debian/patches/CVE-2011-0997.dpatch: filter strings in
client/dhclient.c, common/options.c.
- CVE-2011-0997
-- Marc Deslauriers <email address hidden> Mon, 11 Apr 2011 09:01:59 -0400
-
dhcp3 (3.0.6.dfsg-1ubuntu9.1) hardy-security; urgency=low
* SECURITY UPDATE: stack overflow when connecting to malicious DHCP v4
server
- debian/patches/CVE-2009-0692.dpatch: update script_write_params() in
dhclient.c to verify that length of data is not longer than netmask
(iaddr)
- CVE-2009-0692
-- Jamie Strandboge <email address hidden> Wed, 24 Jun 2009 11:30:13 -0500
-
dhcp3 (3.0.6.dfsg-1ubuntu9) hardy; urgency=low
* Add debian/patches/dhclient-more-debug.dpatch: Show the requested/offered
client IP in log output, for better debugging. Thanks to Peter Miller for
the patch! (Closes: #35265)
-- Martin Pitt <email address hidden> Wed, 02 Apr 2008 15:30:15 +0200
-
dhcp3 (3.0.6.dfsg-1ubuntu8) hardy; urgency=low
* give the pm script a better matching name (90dhcp3-server
instead of 90dhcpd)
* clean up build tree properly
-- Oliver Grawert <email address hidden> Tue, 01 Apr 2008 17:01:25 +0200
-
dhcp3 (3.0.6.dfsg-1ubuntu7) hardy; urgency=low
* move the old acpi suspend/resume scripts properly to pm-utils
-- Oliver Grawert <email address hidden> Tue, 01 Apr 2008 15:47:33 +0200
-
dhcp3 (3.0.6.dfsg-1ubuntu6) hardy; urgency=low
* debian/dhcp3-client.postinst:
- change the priority of dhcp3-client/dhclient-needs-restarting
from high to medium (LP: #174128)
-- Michael Vogt <email address hidden> Tue, 18 Mar 2008 18:14:13 +0100
-
dhcp3 (3.0.6.dfsg-1ubuntu5) hardy; urgency=low
* debian/dhcpd.conf: Add a warning that /etc/ltsp/dhcpd.conf will be used as
configuration file if it exists. (LP: #196700)
-- Martin Pitt <email address hidden> Tue, 11 Mar 2008 10:09:48 +0100
-
dhcp3 (3.0.6.dfsg-1ubuntu4) hardy; urgency=low
* debian/dhcp3-server.init.d: Put interface names after the dhcp3d options,
to comply to manpage. Putting them first causes problems when using
multiple interfaces under some conditions. (LP: #187434)
-- Martin Pitt <email address hidden> Wed, 27 Feb 2008 12:29:26 +0100
-
dhcp3 (3.0.6.dfsg-1ubuntu3) hardy; urgency=low
* debian/dhcp3-client.postinst:
- do not fail if the "dhclient-needs-restarting" question can
not be displayed (e.g. because it is installed with a
noninteractive frontend)
-- Michael Vogt <email address hidden> Tue, 18 Dec 2007 11:01:49 +0100
-
dhcp3 (3.0.6.dfsg-1ubuntu2) hardy; urgency=low
* debian/dhcp3-client.preinst: add ubuntu dapper m5sum of the
/etc/dhcp3/dhclient-script and remove it if it
hasn't changed (avoid unneeded debconf question on
dapper->hardy upgrade)
-- Michael Vogt <email address hidden> Wed, 05 Dec 2007 17:36:26 +0100
-
dhcp3 (3.0.6.dfsg-1ubuntu1) hardy; urgency=low
* Merge from debian unstable, remaining changes:
- debian/control, debian/dhcp3-server.init.d: LSB init script.
- debian/dhclient.conf:
+ Remove the interface-mtu parameter, there are still to many DHCP
servers out there supplying a wrong MTU. (LP#61989)
+ Drop default timeout from 60 to 30 seconds.
- debian/dhclient-script.linux:
+ Wait for /etc/resolv.conf to become writable.
+ Do not clobber old search/domain values if we didn't get any from the
DHCP response.
- Deroot server and client:
+ debian/patches/droppriv.dpatch, deroot-client.dpatch,
deroot-server.dpatch: Code changes.
+ debian/control: Build-depend on libcap-dev.
+ debian/dhcp3-client.files: Install call-dhclient-script.
+ dhcp3-client.post{inst,rm}: Create/remove dhcp system user.
+ debian/dhcp3-server.init.d: Create paths with appropriate permissions
for dhcpd system user access.
+ debian/dhcp3-server.post{inst,rm}: Create/remove dhcpd system user.
+ debian/rules: Use the call-dhclient-script suid wrapper as client
script.
- Send hostname to DHCP server by default (#10239):
+ debian/patches/dynamic-hostname.dpatch: Add support for a new string
type 'h' which behaves like 't' except that '<hostname>' is changed to
the current hostname. Change 'host-name' DHCP option type from 't' to 'h'.
+ debian/dhclient.conf: Enable send-hostname by default.
- debian/dhcp3-server.config: Drop debconf question to medium.
- debian/dhcp3-server.init.d: Allow LTSP to override default configuration
in /etc/ltsp/dhcpd.conf.
- debian/patches/dhclient-onetry-call-clientscript.dpatch: Call
'dhclient-script FAIL' when failing to get an address also when
operating in oneshot mode (-1) to fix avahi-autoipd invocation through
dhcdbd.
- debian/patches/dhcpd.conf-subnet-examples.dpatch: Give an example for
subnet-mask in dhcpd.conf.
- debian/patches/leave_lo_alone.dpatch: Don't take away the address of the
loopback interface (LP#10174).
- debian/patches/revert-next-server.dpatch: "revert the need of the
next-server option in dhcpd.conf so it points to the own IP again for
tftp if the option is not set" (from 3.0.3-6ubuntu4).
- debian/dhclient-script.linux: Set a direct route to the gateway if subnet
mask is 255.255.255.255, so that it gets actually reachable. This mask
happens on PPP connections and other scenarios where all traffic should
go through one host. (LP #33382)
- debian/dhcp3-server.init.d: Fix test_config() to actually display the
error in the config file. (LP #94804)
- debian/patches/droppriv.dpatch: Do not bail out if the system user or
group do not exist, just print a warning. We do not have the derooting
infrastructure in the udeb.
- debian/patches/00list: Do not apply the derooting patches by default,
since we do not want them in the udeb.
- debian/rules: Create another work tree for the udeb, build it separately,
and apply the derooting patches for the main work tree only. This avoids a
libcap1 dependency for the udeb (which is not available)
- debian/rules: Do not rely on dpatches being executable, use the dpatch
command to apply/unapply them.
- Add acpi suspend/resume scripts
dhcp3 (3.0.6.dfsg-1) unstable; urgency=low
* Repacked upstream tarball to exclude RFCs (closes: #438326)
* debian/rules: conditionally call "make distclean" in clean target if
Makefile exists
dhcp3 (3.0.6-1) unstable; urgency=low
* New upstream release
* debian/rules: remove Conflicts: dhcp-client-udeb for dhcp3-client-udeb
* Added Korean debconf template translation (closes: #429773)
* Updated Dutch debconf template translation (closes: #427533)
* Remove patch to fix #147582 as it has been incorporated upstream
* Removed documentation patch as it has been incorporated upstream
-- Oliver Grawert <email address hidden> Wed, 28 Nov 2007 11:14:09 +0100
-
dhcp3 (3.0.5-3ubuntu4) gutsy; urgency=low
* Add acpi suspend/resume scripts, Closes LP: #48212
-- Scott Balneaves <email address hidden> Fri, 07 Sep 2007 07:22:01 -0500
