Amazon Linux 1 Security Advisory: ALAS-2012-31
Advisory Release Date: 2012-01-05 20:58 Pacific
Advisory Updated Date: 2014-09-14 15:10 Pacific
A denial of service flaw was found in the way the dhcpd daemon handled DHCP request packets when regular expression matching was used in "/etc/dhcp/dhcpd.conf". A remote attacker could use this flaw to crash dhcpd. (CVE-2011-4539)
Affected Packages:
dhcp
Issue Correction:
Run yum update dhcp to update your system.
i686:
dhcp-devel-4.1.1-25.P1.14.amzn1.i686
dhclient-4.1.1-25.P1.14.amzn1.i686
dhcp-4.1.1-25.P1.14.amzn1.i686
dhcp-debuginfo-4.1.1-25.P1.14.amzn1.i686
dhcp-common-4.1.1-25.P1.14.amzn1.i686
src:
dhcp-4.1.1-25.P1.14.amzn1.src
x86_64:
dhcp-4.1.1-25.P1.14.amzn1.x86_64
dhclient-4.1.1-25.P1.14.amzn1.x86_64
dhcp-devel-4.1.1-25.P1.14.amzn1.x86_64
dhcp-common-4.1.1-25.P1.14.amzn1.x86_64
dhcp-debuginfo-4.1.1-25.P1.14.amzn1.x86_64