git.ipfire.org Git - thirdparty/systemd.git/commit

]> git.ipfire.org Git - thirdparty/systemd.git/commit

projects / thirdparty / systemd.git / commit

author	Yu Watanabe <watanabe.yu+github@gmail.com>
	Wed, 23 Jun 2021 16:22:07 +0000 (01:22 +0900)
committer	Yu Watanabe <watanabe.yu+github@gmail.com>
	Thu, 24 Jun 2021 02:25:26 +0000 (11:25 +0900)
commit	38e980a6a5a3442c2f48b1f827284388096d8ca5
tree	5299eba20a410611ae845f905bd661f816f8d3e2	tree \| snapshot
parent	551ad0b7de9ebc3a5fb1d84a06e21fc0c0ca3017	commit \| diff

sd-dhcp-client: tentatively ignore FORCERENEW command

This makes DHCP client ignore FORCERENEW requests, as unauthenticated
FORCERENEW requests causes a security issue (TALOS-2020-1142, CVE-2020-13529).

Let's re-enable this after RFC3118 (Authentication for DHCP Messages)
and/or RFC6704 (Forcerenew Nonce Authentication) are implemented.

Fixes #16774.

src/libsystemd-network/sd-dhcp-client.c

diff | blob | blame | history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom