integ/base/dhcp/debian/patches
Zhixiong Chi dcb205850c isc-dhcp: fix CVE-2022-2929
Backport the source patch from the version 4.4.1-2.3+deb11u2.
[https://sources.debian.org/src/isc-dhcp/4.4.1-2.3+deb11u2/debian/patches/CVE-2022-2929.patch]

Refer to:
https://security-tracker.debian.org/tracker/DSA-5251-1
It refers to two issues, CVE-2022-2928 and CVE-2022-2929.
CVE-2022-2928 has been fixed in
[https://review.opendev.org/c/starlingx/integ/+/865278]

Pass: build-pkgs -c -p isc-dhcp
Pass: build-pkgs -a
Pass: build-image
Pass: Debian AIO jenkins installation

Issue is very difficult to reproduce, so we are simply focused on
making sure that this doesn't break anything.

Closes-Bug: 2043434

Signed-off-by: Zhixiong Chi <zhixiong.chi@windriver.com>
Change-Id: Ie9148ea007526160b34c57df5f98d776c04dbe3a
2023-11-13 23:54:17 -05:00
..
CVE-2022-2928.patch Debian: isc-dhcp: fix CVE-2022-2928 2022-11-23 22:02:39 -05:00
CVE-2022-2929.patch isc-dhcp: fix CVE-2022-2929 2023-11-13 23:54:17 -05:00
dhclient-ipv6-bind-to-interface.patch Add debian package for dhcp 2021-11-12 08:58:34 +08:00
dhclient-ipv6-conditionally-set-hostname.patch Add debian package for dhcp 2021-11-12 08:58:34 +08:00
dhclient-restrict-interfaces-to-command-line.patch Add debian package for dhcp 2021-11-12 08:58:34 +08:00
dhclient-set-the-default-prefix-length-to-64.patch Debian: dhclient set the IPv6 prefix length for the addresses 2022-09-02 16:22:06 -03:00
series isc-dhcp: fix CVE-2022-2929 2023-11-13 23:54:17 -05:00