Comment 8 for bug 1517226

This bug was fixed in the package dhcpcd - 1:3.2.3-11+deb7u1build0.14.04.1

---------------
dhcpcd (1:3.2.3-11+deb7u1build0.14.04.1) trusty-security; urgency=medium

  * fake sync from Debian (LP: #1517226)

dhcpcd (1:3.2.3-11+deb7u1) oldstable-security; urgency=high

  * Fix CVE-2012-6698, CVE-2012-6699, CVE-2012-6700,
    out-of-bound reads/writes and use-after-free issues with specially
    crafted DHCP messages.
    This is a forward port of the patch applied to squeeze-lts since
    wheezy uses the same upstream version. (LP: #1517226)

 -- Tyler Hicks <email address hidden> Wed, 30 Mar 2016 17:40:57 -0500