diff options
author | Shawn Routhier <sar@isc.org> | 2012-06-27 21:33:25 +0000 |
---|---|---|
committer | Shawn Routhier <sar@isc.org> | 2012-06-27 21:33:25 +0000 |
commit | e563ec2e5898119b6af8421f30d3513947348ceb (patch) | |
tree | c6d7efe36bec0c4b78072dd46acc5bc6e8fb6ec2 /RELNOTES | |
parent | de87ffe336431082037edc911d202413e6fb51d4 (diff) | |
download | isc-dhcp-e563ec2e5898119b6af8421f30d3513947348ceb.tar.gz |
When attempting to convert a DUID from a client id option
into a hardware address handle unexpected client ids properly.
Thanks to Markus Hietava of Codenomicon CROSS project for the
finding this issue and CERT-FI for vulnerability coordination.
[ISC-Bugs #29852]
CVE: CVE-2012-3570
Diffstat (limited to 'RELNOTES')
-rw-r--r-- | RELNOTES | 7 |
1 files changed, 7 insertions, 0 deletions
@@ -90,6 +90,13 @@ work on other platforms. Please report any problems and suggested fixes to [ISC-Bugs #29851] CVE: CVE-2012-3571 +! When attempting to convert a DUID from a client id option + into a hardware address handle unexpected client ids properly. + Thanks to Markus Hietava of Codenomicon CROSS project for the + finding this issue and CERT-FI for vulnerability coordination. + [ISC-Bugs #29852] + CVE: CVE-2012-3570 + Changes since 4.2.3 ! Add a check for a null pointer before calling the regexec function. |