Changelog for
dhcp-devel-3.0.1-2.i386.rpm :
Mon Sep 27 14:00:00 2004 PLD Team
All persons listed below can be reached at AATTpld.org.pl
$Log: dhcp.spec,v $
Revision 1.96 2004/09/27 21:44:47 kloczek
- release 3,
- rebuild on gcc 3.4.2,
- updated LDAP patch (from http://www.newwave.net/~masneyb/dhcp-3.0.1-ldap-patch).
Revision 1.95 2004/07/17 16:15:53 kloczek
- updated to final 3.0.1,
- updated ldap patch.
Revision 1.94 2004/06/22 20:12:57 kloczek
- updated to 3.0.1rc14,
- SECURITY FIXES: CAN-2004-0460, CAN-2004-0461
CAN-2004-0460 - CERT VU#317350: Five stack overflow exploits were closed
in logging messages with excessively long hostnames provided by the
clients. It is highly probable that these could have been used by
attackers to gain arbitrary root access on systems using ISC DHCP 3.0.1
release candidates 12 or 13. Special thanks to Gregory Duchemin for
both finding and solving the problem.
CAN-2004-0461 - CERT VU#654390: Once the above was closed, an opening
in log_
*() functions was evidented, on some specific platforms where
vsnprintf() was not believed to be available and calls were wrapped to
sprintf() instead. Again, credit goes to Gregory Duchemin for finding
the problem. Calls to snprintf() are now linked to a distribution-local
snprintf implementation, only in those cases where the architecture is
not known to provide one (see includes/cf/[arch].h). If you experience
linking problems with snprintf/vsnprintf or \'isc_print_\' functions, this
is where to look. This vulnerability did not exist in any previously
published version of ISC DHCP.
Revision 1.93 2004/04/18 05:40:30 kloczek
- release 3: rebuild against openldap 2.2.x.
Revision 1.92 2004/02/09 00:23:53 kloczek
- updated to 3.0.1rc13,
- added ja man pages in proper path.
Revision 1.91 2004/01/10 13:49:38 kloczek
- added no_catman patch: remove generate rofff output catman pages (nor
groff can be removed from BuildRequires),
- use proper CC.
Revision 1.90 2004/01/10 13:18:33 kloczek
- more %doc: added README.ldap.
Revision 1.89 2004/01/10 13:06:17 kloczek
- updated to 3.0.1rc12,
- added LDAP support (based on patch from:
http://www.newwave.net/~masneyb/dhcp-3.0.1rc12-ldap-patch).