Re: dhclient and CVE-2011-0997...?
Le Tue, 19 Apr 2011 10:19:46 -0700,
Chuck Swiger <cswiger@mac.com> a 嶰rit :
> Hi--
>
> Are folks familiar with:
>
> http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0997
> http://www.isc.org/software/dhcp/advisories/cve-2011-0997
> http://nakedsecurity.sophos.com/2011/04/07/flaw-in-iscs-dhclient-could-allow-remote-code-execution/
>
> Checking
> http://www.freebsd.org/cgi/cvsweb.cgi/src/sbin/dhclient/dhclient.c, I
> don't see signs that it may have been updated. But, I also can't
> readily tell which version of dhclient FreeBSD actually has and how
> much it might have been changed from the ISC version. :-)
FreeBSD uses the OpenBSD dhclient, not the ISC one.
Regards.
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
討論串 (同標題文章)