This bug was fixed in the package dhcpcd - 1:3.2.3-7ubuntu0.10.10.1
--------------- dhcpcd (1:3.2.3-7ubuntu0.10.10.1) maverick-security; urgency=high
* SECURITY UPDATE: dhcpcd before 5.2.12 allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message. (LP: #931036) - https://build.opensuse.org/package/view_file?file=dhcpcd-3.2.3-option-checks.diff&package=dhcpcd&project=network%3Adhcp&rev=52442e5c1d803d7c1818a920a0bae7f1 - above linked patch(without the additional support for NETBIOS type messages) has been added. - CVE-2011-0996 -- Zubin Mithra <email address hidden> Mon, 13 Feb 2012 14:27:54 +0530
This bug was fixed in the package dhcpcd - 1:3.2.3- 7ubuntu0. 10.10.1
--------------- 3-7ubuntu0. 10.10.1) maverick-security; urgency=high
dhcpcd (1:3.2.
* SECURITY UPDATE: dhcpcd before 5.2.12 allows remote attackers to /build. opensuse. org/package/ view_file? file=dhcpcd- 3.2.3-option- checks. diff&package= dhcpcd& project= network% 3Adhcp& rev=52442e5c1d8 03d7c1818a920a0 bae7f1
execute arbitrary commands via shell metacharacters in a hostname
obtained from a DHCP message. (LP: #931036)
- https:/
- above linked patch(without the additional support for NETBIOS type
messages) has been added.
- CVE-2011-0996
-- Zubin Mithra <email address hidden> Mon, 13 Feb 2012 14:27:54 +0530