SuSE 10 Security Update : dhclient (ZYPP Patch Number 6335)
Critical Nessus Plugin ID 41502
SynopsisThe remote SuSE 10 host is missing a security-related patch.
DescriptionThe DHCP client (dhclient) could be crashed by a malicious DHCP server sending a overlong subnet field. (CVE-2009-0692)
In some circumstances code execution might be possible, but might be caught by the buffer overflow checking in newer distributions. (SLES 10 and 11).
SolutionApply ZYPP patch number 6335.