ALAS-2013-157


Amazon Linux AMI Security Advisory: ALAS-2013-157
Advisory Release Date: 2014-09-15 22:31 Pacific
Severity: Low

Issue Overview:

A flaw was found in the way the dhcpd daemon handled the expiration time of IPv6 leases. If dhcpd's configuration was changed to reduce the default IPv6 lease time, lease renewal requests for previously assigned leases could cause dhcpd to crash. (CVE-2012-3955 )


Affected Packages:

dhcp


Issue Correction:
Run yum update dhcp to update your system.

New Packages:
i686:
    dhcp-debuginfo-4.1.1-34.P1.18.amzn1.i686
    dhcp-common-4.1.1-34.P1.18.amzn1.i686
    dhcp-4.1.1-34.P1.18.amzn1.i686
    dhclient-4.1.1-34.P1.18.amzn1.i686
    dhcp-devel-4.1.1-34.P1.18.amzn1.i686

src:
    dhcp-4.1.1-34.P1.18.amzn1.src

x86_64:
    dhcp-common-4.1.1-34.P1.18.amzn1.x86_64
    dhclient-4.1.1-34.P1.18.amzn1.x86_64
    dhcp-4.1.1-34.P1.18.amzn1.x86_64
    dhcp-debuginfo-4.1.1-34.P1.18.amzn1.x86_64
    dhcp-devel-4.1.1-34.P1.18.amzn1.x86_64