NEW FEATURES
Version 4.1-ESV-R16-P1 is a security release of an extended support version
-(ESV) release. ESVs are intended for users who have longer upgrade
-constraints. Please see our web page:
+(ESV) release fixing possible buffer overwrite error in client and server
+while parsing haxadecimal literals in lease file. ESVs are intended for
+users who have longer upgrade constraints. Please see our web page:
http://www.isc.org/downloads/software-support-policy/
dhcp-users@lists.isc.org.
Changes since 4.1-ESV-R16
-
-- Corrected a buffer overwrite possible when parsing hexadecimal
- literals with more than 1024 octets.
- [Gitlab #182]
- CVE: CVE-2021-25217
+- ! Corrected a buffer overwrite possible when parsing hexadecimal
+ literals with more than 1024 octets. Reported by Jon Franklin from Dell,
+ and also by Pawel Wieczorkiewicz from Amazon Web Services.
+ [Gitlab #182]
+ CVE: CVE-2021-25217
Changes since 4.1-ESV-R16b1
Common parser code for dhcpd and dhclient. */
/*
- * Copyright (c) 2004-2019 by Internet Systems Consortium, Inc. ("ISC")
+ * Copyright (c) 2004-2021 by Internet Systems Consortium, Inc. ("ISC")
* Copyright (c) 1995-2003 by Internet Software Consortium
*
* Permission to use, copy, modify, and distribute this software for any
/*
- * Copyright (C) 2018 Internet Systems Consortium, Inc. ("ISC")
+ * Copyright (C) 2018-2021 Internet Systems Consortium, Inc. ("ISC")
*
* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this
projects / thirdparty / dhcp.git / commitdiff
