[pkg-dhcp-commits] [SCM] ISC DHCP packaging for Debian branch, master, updated. debian/4.2.4-2-2-g4375c58
Michael Gilbert
mgilbert at debian.org
Mon Oct 15 19:22:32 UTC 2012
The following commit has been merged in the master branch:
commit 4375c58438a31367ef8499eecd75b4938da95746
Author: Michael Gilbert <mgilbert at debian.org>
Date: Mon Oct 15 15:22:00 2012 -0400
Release 4.2.4-3
diff --git a/debian/changelog b/debian/changelog
index 3c4547a..8ee6ad5 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,14 @@
+isc-dhcp (4.2.4-3) unstable; urgency=high
+
+ * Maintainer security upload.
+ * Fix cve-2012-2248: as of 4.2.x the build system prefix now gets included
+ in CLIENT_PATH. This has security implications since the build system's
+ source path is now included in dhclient's search PATH on users' systems,
+ so sanitize the prefix to not include build system paths (closes: #690532)
+ - Patch thanks to Raphael Geissert
+
+ -- Michael Gilbert <mgilbert at debian.org> Mon, 15 Oct 2012 14:18:07 -0400
+
isc-dhcp (4.2.4-2) unstable; urgency=low
* Fix multiple security issues (closes: #686174)
--
ISC DHCP packaging for Debian
More information about the pkg-dhcp-commits
mailing list