dhcp: CVE-2016-2774

ISC DHCP 4.1.x before 4.1-ESV-R13 and 4.2.x and 4.3.x before 4.3.4 does not restrict the number of concurrent TCP sessions, which allows remote attackers to cause a denial of service (INSIST assertion failure or request-processing outage) by establishing many sessions. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-2774 Signed-off-by: Catalin Enache <catalin.enache@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com>
author: Catalin Enache <catalin.enache@windriver.com> 2016-04-18 15:52:16 +0300
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2016-04-18 16:27:45 +0100
commit: 2fc84114c6323bf1e3d3598af52dd1523168c9fc (patch)
tree: 4391a6f94785244e93e656969d0d2897b0bd88a6 /meta/recipes-connectivity/dhcp/dhcp_4.3.3.bb
parent: b18134ddaf949b4f001a1613ab876aed6324040a (diff)
download: openembedded-core-contrib-2fc84114c6323bf1e3d3598af52dd1523168c9fc.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/dhcp/dhcp_4.3.3.bb b/meta/recipes-connectivity/dhcp/dhcp_4.3.3.bb
index 970617ff92..4e8cd272b8 100644
--- a/meta/recipes-connectivity/dhcp/dhcp_4.3.3.bb
+++ b/meta/recipes-connectivity/dhcp/dhcp_4.3.3.bb
@@ -8,6 +8,7 @@ SRC_URI += "file://dhcp-3.0.3-dhclient-dbus.patch;striplevel=0 \
             file://replace-ifconfig-route.patch \
             file://CVE-2015-8605.patch \
             file://0001-site.h-enable-gentle-shutdown.patch \
+            file://CVE-2016-2774.patch \
            "
 
 SRC_URI[md5sum] = "c5577b09c9017cdd319a11ff6364268e"
author	Catalin Enache <catalin.enache@windriver.com>	2016-04-18 15:52:16 +0300
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2016-04-18 16:27:45 +0100
commit	2fc84114c6323bf1e3d3598af52dd1523168c9fc (patch)
tree	4391a6f94785244e93e656969d0d2897b0bd88a6 /meta/recipes-connectivity/dhcp/dhcp_4.3.3.bb
parent	b18134ddaf949b4f001a1613ab876aed6324040a (diff)
download	openembedded-core-contrib-2fc84114c6323bf1e3d3598af52dd1523168c9fc.tar.gz