openSUSE Security Update : dhcp (openSUSE-SU-2012:1254-1)

High Nessus Plugin ID 74764


The remote openSUSE host is missing a security update.


- Update to ISC dhcp-4.2.4-P2 release, providing a security fix for an issue with the use of lease times was found and fixed. Making certain changes to the end time of an IPv6 lease could cause the server to abort.
Thanks to Glen Eustace of Massey University, New Zealand for finding this issue. ([ISC-Bugs #30281], CVE:
CVE-2012-3955, bnc#780167)


Update the affected dhcp packages.

See Also

Plugin Details

Severity: High

ID: 74764

File Name: openSUSE-2012-642.nasl

Version: $Revision: 1.4 $

Type: local

Agent: unix

Published: 2014/06/13

Modified: 2016/01/17

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 7.1

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:dhcp, p-cpe:/a:novell:opensuse:dhcp-client, p-cpe:/a:novell:opensuse:dhcp-client-debuginfo, p-cpe:/a:novell:opensuse:dhcp-debuginfo, p-cpe:/a:novell:opensuse:dhcp-debugsource, p-cpe:/a:novell:opensuse:dhcp-devel, p-cpe:/a:novell:opensuse:dhcp-relay, p-cpe:/a:novell:opensuse:dhcp-relay-debuginfo, p-cpe:/a:novell:opensuse:dhcp-server, p-cpe:/a:novell:opensuse:dhcp-server-debuginfo, cpe:/o:novell:opensuse:11.4

Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list, Host/cpu

Patch Publication Date: 2012/09/17

Reference Information

CVE: CVE-2012-3955