安全研究
安全漏洞
ISC DHCP script_write_params()函数栈溢出漏洞
发布日期:2009-07-14
更新日期:2009-07-16
受影响系统:
ISC DHCP 4.1不受影响系统:
ISC DHCP 4.0
ISC DHCP 3.1
ISC DHCP 3.0
ISC DHCP 2.0
ISC DHCP 4.1.0p1描述:
ISC DHCP 4.0.1p1
ISC DHCP 3.1.2p1
BUGTRAQ ID: 35668
CVE(CAN) ID: CVE-2009-0692
动态主机配置协议(DHCP)允许IP网络上的各个设备获得各自的网络配置信息,包括IP地址、子网掩码和广播地址。
ISC DHCP客户端(dhclient)的client/dhclient.c文件中的script_write_params()函数在使用服务器端所提供的租赁地址和子网掩码生成子网数字时没有执行长度检查。如果恶意的DHCP服务器返回了超长的子网掩码选项的话,就可以触发栈溢出,导致客户端崩溃或以root用户权限执行任意指令。
<*来源:Mandriva Linux Engineering Team
链接:http://secunia.com/advisories/35785/
http://www.kb.cert.org/vuls/id/410676
https://www.isc.org/node/468
https://www.redhat.com/support/errata/RHSA-2009-1154.html
https://www.redhat.com/support/errata/RHSA-2009-1136.html
http://www.debian.org/security/2009/dsa-1833
*>
测试方法:
警 告
以下程序(方法)可能带有攻击性,仅供安全研究与教学之用。使用者风险自负!
建议:
厂商补丁:
Debian
------
Debian已经为此发布了一个安全公告(DSA-1833-1)以及相应补丁:
DSA-1833-1:New dhcp3 packages fix arbitrary code execution
链接:http://www.debian.org/security/2009/dsa-1833
补丁下载:
Source archives:
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3_3.0.4-13+etch2.diff.gz
Size/MD5 checksum: 116721 6d49a9fb6b0617aba87cd90abef5bd57
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3_3.0.4.orig.tar.gz
Size/MD5 checksum: 721450 aeb916fbb50edc320f142cd6a74cb48c
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3_3.0.4-13+etch2.dsc
Size/MD5 checksum: 1077 50aac538f9bb0e11e878758d754b1e14
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.0.4-13+etch2_alpha.deb
Size/MD5 checksum: 157948 502301a6539a30b14cd2d6c8fb1bd032
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.0.4-13+etch2_alpha.deb
Size/MD5 checksum: 113528 c89f3dfd91bbb2d8850359b78f5eae66
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.0.4-13+etch2_alpha.udeb
Size/MD5 checksum: 192724 a4b5cab9e6f14ad9a80bef648435b86c
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.0.4-13+etch2_alpha.deb
Size/MD5 checksum: 240720 48996d54bf9d3fbae7d0a4f2b0e76224
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.0.4-13+etch2_alpha.deb
Size/MD5 checksum: 304078 2e58f7af0c23b07b81b7e88031ec22b1
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.0.4-13+etch2_alpha.deb
Size/MD5 checksum: 346552 96169b1056055a13cbfb13fb8f73b061
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.0.4-13+etch2_amd64.udeb
Size/MD5 checksum: 174734 3de2c8f75f8d6df63870c2d9638c8ae6
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.0.4-13+etch2_amd64.deb
Size/MD5 checksum: 287422 052994dc5544eacac9b22837bba47660
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.0.4-13+etch2_amd64.deb
Size/MD5 checksum: 222104 185470021c69635074e4d09a05275f49
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.0.4-13+etch2_amd64.deb
Size/MD5 checksum: 131134 33fbb0278c39d36b2a0dd3819e192493
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.0.4-13+etch2_amd64.deb
Size/MD5 checksum: 321874 e3ce73d54b47a930e440626672fcd521
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.0.4-13+etch2_amd64.deb
Size/MD5 checksum: 103610 04e95fd257de2ca592e09cf8927b9c37
arm architecture (ARM)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.0.4-13+etch2_arm.deb
Size/MD5 checksum: 99498 8098ab4856d359049538213ec0fa4a75
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.0.4-13+etch2_arm.udeb
Size/MD5 checksum: 167040 21fcc83a87ed431f9d03b0479b522dd2
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.0.4-13+etch2_arm.deb
Size/MD5 checksum: 280430 9355307446248854bffbe49a2120d450
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.0.4-13+etch2_arm.deb
Size/MD5 checksum: 215172 0ab20469ee9fe1ccf05bfe40b68bc2d7
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.0.4-13+etch2_arm.deb
Size/MD5 checksum: 123860 2b69130163d2cb83009710081a5be3ea
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.0.4-13+etch2_arm.deb
Size/MD5 checksum: 314402 191cff362f2ceb557495d037aa2310c8
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.0.4-13+etch2_hppa.deb
Size/MD5 checksum: 103994 3cbfc2d7eea1de9bf64f84d31889bf75
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.0.4-13+etch2_hppa.udeb
Size/MD5 checksum: 171728 68bc286a4261035d72bbb1a63eb08dd9
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.0.4-13+etch2_hppa.deb
Size/MD5 checksum: 219790 b8e006bf59ac068513e4bb35c4c96d2d
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.0.4-13+etch2_hppa.deb
Size/MD5 checksum: 139516 ee6ad7d1fd911b98cd40290823cdd50d
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.0.4-13+etch2_hppa.deb
Size/MD5 checksum: 319134 d36a40e22c468e76386b2ab6befd8424
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.0.4-13+etch2_hppa.deb
Size/MD5 checksum: 285302 09641cca4ba379d61c1dca0fbde543fb
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.0.4-13+etch2_i386.deb
Size/MD5 checksum: 265170 5f0e7243ba3c59251a236b332fa0818f
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.0.4-13+etch2_i386.deb
Size/MD5 checksum: 290962 ecb192ccc56b7982a8c60e54e4d55bbb
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.0.4-13+etch2_i386.deb
Size/MD5 checksum: 198194 fe580c33e7953d727015063e3e24d209
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.0.4-13+etch2_i386.deb
Size/MD5 checksum: 92416 686a574fea049cf930757230f86af87b
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.0.4-13+etch2_i386.udeb
Size/MD5 checksum: 150410 d3747839582b942b155f427a4034f6b7
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.0.4-13+etch2_i386.deb
Size/MD5 checksum: 116952 340249d4e0ba06007f063b501dfeac0e
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.0.4-13+etch2_ia64.deb
Size/MD5 checksum: 460536 81350e4d73103ffe454ae70a3f2ab967
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.0.4-13+etch2_ia64.deb
Size/MD5 checksum: 381784 161f51028930ea9a1a078e9f6bc8070c
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.0.4-13+etch2_ia64.deb
Size/MD5 checksum: 325064 b51fa5cffbfd6e8daa2319ce287e6310
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.0.4-13+etch2_ia64.deb
Size/MD5 checksum: 182712 0961dfa19e58b2fda1b397cccf0c56b2
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.0.4-13+etch2_ia64.udeb
Size/MD5 checksum: 276972 7f96a3e76a36e8ecb74ae56a3066db91
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.0.4-13+etch2_ia64.deb
Size/MD5 checksum: 150950 b62bfa283012eefe6123e4d57eafb95b
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.0.4-13+etch2_mips.udeb
Size/MD5 checksum: 178822 f5413f7bc85b1c4f2b1c5fc1310b5101
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.0.4-13+etch2_mips.deb
Size/MD5 checksum: 290490 a1df2dcfa3ccd3b787822d92979d1879
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.0.4-13+etch2_mips.deb
Size/MD5 checksum: 227208 6795dad252df73ccad7093284117bc14
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.0.4-13+etch2_mips.deb
Size/MD5 checksum: 137836 f3cb677fc63e5ad63d0ffb038bac2d8e
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.0.4-13+etch2_mips.deb
Size/MD5 checksum: 327612 a84dd37caf4e3a076d17fbb30e242656
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.0.4-13+etch2_mips.deb
Size/MD5 checksum: 107814 a6c576fe51309fa51bc852e3cb061051
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.0.4-13+etch2_mipsel.deb
Size/MD5 checksum: 289074 4c60b9d7ed1e6ebcc0a3e4233b4bad3b
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.0.4-13+etch2_mipsel.deb
Size/MD5 checksum: 225724 65671425f5a4d6468933dd782807ad0b
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.0.4-13+etch2_mipsel.deb
Size/MD5 checksum: 107314 2be8a4eb41d646e9aee26f1f2c02e63b
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.0.4-13+etch2_mipsel.udeb
Size/MD5 checksum: 177428 38810775a90a8dcaf51ecd4b62ff62d3
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.0.4-13+etch2_mipsel.deb
Size/MD5 checksum: 137384 e5b6a97e69a9b63f22762bf74c79bdfe
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.0.4-13+etch2_mipsel.deb
Size/MD5 checksum: 325660 db87a9bd8bcf73ffab1bf87171c4d18f
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.0.4-13+etch2_powerpc.deb
Size/MD5 checksum: 95268 51a2d9e53a0d0d9bf3d948f8d2a045e4
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.0.4-13+etch2_powerpc.deb
Size/MD5 checksum: 270644 29d8e657d95c12f489215de503c24ffb
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.0.4-13+etch2_powerpc.udeb
Size/MD5 checksum: 155886 0ac02169c239b24ad9fddfa5e237186a
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.0.4-13+etch2_powerpc.deb
Size/MD5 checksum: 130298 d93a5ddd00026cbaccd7a43c12d7eed5
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.0.4-13+etch2_powerpc.deb
Size/MD5 checksum: 204226 b9c8f25ae0502d86a0db2a3ebeacee88
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.0.4-13+etch2_powerpc.deb
Size/MD5 checksum: 299368 5022ae153ee18c6684c1b5a8b7c78a8f
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.0.4-13+etch2_sparc.deb
Size/MD5 checksum: 202674 3219218e6e886505c7268e30344a199e
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.0.4-13+etch2_sparc.deb
Size/MD5 checksum: 125748 c3678c9c265ad4288a77147d99038b33
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.0.4-13+etch2_sparc.deb
Size/MD5 checksum: 95246 db0c1035d5aefd6fc9a1682c3ea6fefb
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.0.4-13+etch2_sparc.deb
Size/MD5 checksum: 296420 2a73341aa7331f0ab4038fc3587850bf
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.0.4-13+etch2_sparc.deb
Size/MD5 checksum: 268822 6a6380bdd4dfc204e602f86c3f5e2ae9
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.0.4-13+etch2_sparc.udeb
Size/MD5 checksum: 154910 6dc0420162294571d894ed490d569fe9
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Source archives:
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3_3.1.1.orig.tar.gz
Size/MD5 checksum: 798228 fcc19330a9c3a0efb5620409214652a9
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3_3.1.1-6+lenny2.diff.gz
Size/MD5 checksum: 128880 72d4201330b347bfd5ccb15cad39c98f
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3_3.1.1-6+lenny2.dsc
Size/MD5 checksum: 1488 595d2c450fe04edac8e5fcf916480a84
Architecture independent packages:
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp-client_3.1.1-6+lenny2_all.deb
Size/MD5 checksum: 22976 0216788c7652496df9d297d3df2a81e7
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.1.1-6+lenny2_alpha.deb
Size/MD5 checksum: 394400 cb8559b314619922a91374579d6959c4
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.1.1-6+lenny2_alpha.deb
Size/MD5 checksum: 148276 a8a666404ecf773eaeaab5a2423b540e
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server-ldap_3.1.1-6+lenny2_alpha.deb
Size/MD5 checksum: 348508 cfc96c8147d27237b57e4e698f393cda
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.1.1-6+lenny2_alpha.deb
Size/MD5 checksum: 127480 989117e4e0bd1b90cbd5cd0ec06377d0
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.1.1-6+lenny2_alpha.deb
Size/MD5 checksum: 271974 b36ad4833551063757e31562c713d4ae
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.1.1-6+lenny2_alpha.udeb
Size/MD5 checksum: 215130 326aaed7e5144102deed214c5ab6a14c
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.1.1-6+lenny2_alpha.deb
Size/MD5 checksum: 333764 b8ebbb4d8a8ac528a685490483da09f1
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.1.1-6+lenny2_amd64.deb
Size/MD5 checksum: 358390 68dccbc7e63ffb59c9ef2af3bfe4c7b3
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.1.1-6+lenny2_amd64.deb
Size/MD5 checksum: 245198 4cd491f7be9374393a4d9c8687b8276a
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.1.1-6+lenny2_amd64.deb
Size/MD5 checksum: 120404 4dfcb0d1f42836cac6d5679a1abdfcb9
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server-ldap_3.1.1-6+lenny2_amd64.deb
Size/MD5 checksum: 313190 5da5b48221028fff8d2fe89370ea051d
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.1.1-6+lenny2_amd64.deb
Size/MD5 checksum: 310328 f6a3ddc984847b078c9e93ad95d82ae4
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.1.1-6+lenny2_amd64.deb
Size/MD5 checksum: 114232 1980df61d75ea40ebc82c22c7005b3ea
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.1.1-6+lenny2_amd64.udeb
Size/MD5 checksum: 188412 91cf6d4362473d908f108a45c6e1073c
arm architecture (ARM)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.1.1-6+lenny2_arm.deb
Size/MD5 checksum: 103692 0c3678563a2fadc12054811d3c5df5be
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.1.1-6+lenny2_arm.deb
Size/MD5 checksum: 336338 22a205bb36afdb50717e1187c644ca7f
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.1.1-6+lenny2_arm.deb
Size/MD5 checksum: 292856 d64219e9efe77445c5b3c2a5834a5f16
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.1.1-6+lenny2_arm.deb
Size/MD5 checksum: 226548 30e51575f5aad4a17cda75b6277c2298
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.1.1-6+lenny2_arm.deb
Size/MD5 checksum: 108874 71e3bc13d6e59a98f32f3466291becac
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.1.1-6+lenny2_arm.udeb
Size/MD5 checksum: 170056 460b6cb3d07249b2bf7a554504815cc3
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server-ldap_3.1.1-6+lenny2_arm.deb
Size/MD5 checksum: 291164 768c6b628b9285007277a884342fff2d
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server-ldap_3.1.1-6+lenny2_armel.deb
Size/MD5 checksum: 293770 aff3c87d606cf2b7cfc8cc2b6a433ee0
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.1.1-6+lenny2_armel.deb
Size/MD5 checksum: 338686 20e3cf59a67c8d746918378e486adc72
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.1.1-6+lenny2_armel.deb
Size/MD5 checksum: 109692 228381c7fbead4e0b3e140647c956015
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.1.1-6+lenny2_armel.deb
Size/MD5 checksum: 103172 04a01c3e2e5eb34b9ca9b89ba6ff0704
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.1.1-6+lenny2_armel.deb
Size/MD5 checksum: 227394 7afa7ddb6b23887f8a11ae1599c521b6
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.1.1-6+lenny2_armel.deb
Size/MD5 checksum: 293020 00ed8969e284da3a687e4e6421dbdc3b
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.1.1-6+lenny2_armel.udeb
Size/MD5 checksum: 170800 2e74568b6974af18c54a8f276157240f
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.1.1-6+lenny2_hppa.deb
Size/MD5 checksum: 116212 bbc799a4068272efbd27845c0b91de4d
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.1.1-6+lenny2_hppa.udeb
Size/MD5 checksum: 194972 d86d92f993fd03f2177847d0384cdc8e
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server-ldap_3.1.1-6+lenny2_hppa.deb
Size/MD5 checksum: 324480 169c91330d7627dd539342a950c0ede1
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.1.1-6+lenny2_hppa.deb
Size/MD5 checksum: 315718 e86d7975c3341d02f319f7de97b13045
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.1.1-6+lenny2_hppa.deb
Size/MD5 checksum: 251748 956834560fde2009ae81efba433ab9b1
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.1.1-6+lenny2_hppa.deb
Size/MD5 checksum: 127710 f67185d6696ef7104a888053488234f8
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.1.1-6+lenny2_hppa.deb
Size/MD5 checksum: 369580 cf511b62e1cbced8373103dd23604631
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.1.1-6+lenny2_i386.deb
Size/MD5 checksum: 332434 deceed031e4ec70f9a89a3f9f1aa83a6
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.1.1-6+lenny2_i386.udeb
Size/MD5 checksum: 167142 890e95b663c536bd4794e4eeaf7e4620
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.1.1-6+lenny2_i386.deb
Size/MD5 checksum: 106664 e9a85ff16968a9b0a982f2650d09b97e
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.1.1-6+lenny2_i386.deb
Size/MD5 checksum: 224288 ccaea8e386efccf4a9a7b5a66368a18b
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server-ldap_3.1.1-6+lenny2_i386.deb
Size/MD5 checksum: 286932 acd0bd92af229ba24bb9e426e518144f
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.1.1-6+lenny2_i386.deb
Size/MD5 checksum: 290520 41251b845417290082cead454420009a
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.1.1-6+lenny2_i386.deb
Size/MD5 checksum: 102132 40ccebf82e99c1f2228d0304c7c10bb0
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.1.1-6+lenny2_ia64.deb
Size/MD5 checksum: 400296 447643661f0ef198381636421a817e15
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.1.1-6+lenny2_ia64.deb
Size/MD5 checksum: 347478 0ee8f2058fca1d30fdcb4eed2e82b6b1
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.1.1-6+lenny2_ia64.deb
Size/MD5 checksum: 159842 12d61f96202f3f68b9aff09424d79348
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.1.1-6+lenny2_ia64.deb
Size/MD5 checksum: 508044 130ffd524faa48178f124befdc150e47
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server-ldap_3.1.1-6+lenny2_ia64.deb
Size/MD5 checksum: 464766 bf7266a768cc90bd76c785624cb4089d
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.1.1-6+lenny2_ia64.udeb
Size/MD5 checksum: 289288 ee79b20eefaf229fb46ada9bc6ae56bf
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.1.1-6+lenny2_ia64.deb
Size/MD5 checksum: 155048 8ecc258935ffd55300285fc775d9f1b9
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.1.1-6+lenny2_mips.deb
Size/MD5 checksum: 359176 fb5bd87ef5481f1f43c9a45dfcd3ce37
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.1.1-6+lenny2_mips.deb
Size/MD5 checksum: 309030 90233c8ed44269bba30f16b0e8a84450
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.1.1-6+lenny2_mips.deb
Size/MD5 checksum: 245844 16982508add38de5d1dc7e465e484d14
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.1.1-6+lenny2_mips.deb
Size/MD5 checksum: 114538 291ed9f1bc54e3b8082ca4633185796c
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server-ldap_3.1.1-6+lenny2_mips.deb
Size/MD5 checksum: 314358 270b38430ca3b97245c29ac4dc314172
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.1.1-6+lenny2_mips.udeb
Size/MD5 checksum: 188178 334dd27da8522f16bf58ac31e4d3dac2
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.1.1-6+lenny2_mips.deb
Size/MD5 checksum: 124312 aef53193ecfafb6c1433223f19242a35
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.1.1-6+lenny2_mipsel.deb
Size/MD5 checksum: 362162 67743cf382e17cfab714158bb0f37561
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.1.1-6+lenny2_mipsel.deb
Size/MD5 checksum: 247664 b5494e175f7be190ddb2390d2b55ca79
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.1.1-6+lenny2_mipsel.deb
Size/MD5 checksum: 310866 6387812c812dafa3b63ed7b139c48f74
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.1.1-6+lenny2_mipsel.deb
Size/MD5 checksum: 116224 bf5038fb4e9d79beea543376f91a5404
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.1.1-6+lenny2_mipsel.udeb
Size/MD5 checksum: 190284 1da972b8dd8e57d7ed1e62b387329d43
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server-ldap_3.1.1-6+lenny2_mipsel.deb
Size/MD5 checksum: 317228 9df2929f942d894260e0783cba8668c0
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.1.1-6+lenny2_mipsel.deb
Size/MD5 checksum: 125528 34a0a833a1d5626232a7f6b0891d6fa9
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.1.1-6+lenny2_powerpc.deb
Size/MD5 checksum: 305096 f3d385927548fe52fde1070280bda9a9
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.1.1-6+lenny2_powerpc.deb
Size/MD5 checksum: 111500 9d03e2dc815e1f2bb383f677aaf86eb9
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.1.1-6+lenny2_powerpc.udeb
Size/MD5 checksum: 183812 82bce24908b4088c62c9d6d7622d3ac2
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server-ldap_3.1.1-6+lenny2_powerpc.deb
Size/MD5 checksum: 310594 97b0fd83d73c1aec8784e97a92b77ee1
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.1.1-6+lenny2_powerpc.deb
Size/MD5 checksum: 354430 0e7fc5b85c1474674e8aa1f506bbf815
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.1.1-6+lenny2_powerpc.deb
Size/MD5 checksum: 118796 2af645bbf54897306a52a7b072cdded1
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.1.1-6+lenny2_powerpc.deb
Size/MD5 checksum: 241116 7748b01950150c4cec91d2f361c5e403
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.1.1-6+lenny2_s390.deb
Size/MD5 checksum: 303410 0681214517ad4e1746d0f30a6af3854f
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.1.1-6+lenny2_s390.deb
Size/MD5 checksum: 348930 cda6066a1d5cfa599383e38201b662c0
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.1.1-6+lenny2_s390.deb
Size/MD5 checksum: 112420 cb2a4679d4d187e6373df2e8fb7de53e
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.1.1-6+lenny2_s390.udeb
Size/MD5 checksum: 182114 55db5122f2cb6acc7169911f40c5646a
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.1.1-6+lenny2_s390.deb
Size/MD5 checksum: 117568 6e16df93aabfcb6892de03e3c7d9c35b
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.1.1-6+lenny2_s390.deb
Size/MD5 checksum: 239446 5c93734c0bd94ef02c726730418ab49c
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server-ldap_3.1.1-6+lenny2_s390.deb
Size/MD5 checksum: 303678 5924002054a4233ea16e4e8769821f49
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client-udeb_3.1.1-6+lenny2_sparc.udeb
Size/MD5 checksum: 161504 f4ae7e33ec0fae6818f0cae625925ee9
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-client_3.1.1-6+lenny2_sparc.deb
Size/MD5 checksum: 218292 f4b7091a070b4dc413eb4d3e319b88f9
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-dev_3.1.1-6+lenny2_sparc.deb
Size/MD5 checksum: 109326 fe50b4989d1b397347621c5c4fef23af
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-relay_3.1.1-6+lenny2_sparc.deb
Size/MD5 checksum: 101564 60fd708e4dcda554af9ede9b9cc396a9
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server-ldap_3.1.1-6+lenny2_sparc.deb
Size/MD5 checksum: 280070 7ee763f435a4881ac7f719030e59b8d0
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-common_3.1.1-6+lenny2_sparc.deb
Size/MD5 checksum: 283656 2a79cfc252c6a772d16e34845984a5ac
http://security.debian.org/pool/updates/main/d/dhcp3/dhcp3-server_3.1.1-6+lenny2_sparc.deb
Size/MD5 checksum: 325588 168e42992477d7e845d1d9bfde4b1cad
补丁安装方法:
1. 手工安装补丁包:
首先,使用下面的命令来下载补丁软件:
# wget url (url是补丁下载链接地址)
然后,使用下面的命令来安装补丁:
# dpkg -i file.deb (file是相应的补丁名)
2. 使用apt-get自动安装补丁包:
首先,使用下面的命令更新内部数据库:
# apt-get update
然后,使用下面的命令安装更新软件包:
# apt-get upgrade
ISC
---
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
http://ftp.isc.org/isc/dhcp/dhcp-4.1.0p1.tar.gz
RedHat
------
RedHat已经为此发布了一个安全公告(RHSA-2009:1136-01)以及相应补丁:
RHSA-2009:1136-01:Critical: dhcp security update
链接:https://www.redhat.com/support/errata/RHSA-2009-1136.html
浏览次数:4697
严重程度:0(网友投票)
绿盟科技给您安全的保障