COMMAND

    dhcpd

SYSTEMS AFFECTED

    Linux (others?)

PROBLEM

    Chris Evans found some nasty security problems with dhcpd.   There
    are two  bugs in  all previous  releases of  the Internet Software
    Consortium DHCP Distribution which  can be exploited to  crash the
    DHCP server, or possibly worse.

SOLUTION

    There are  new distributions  of version  1.0 and  2.0 of the DHCP
    Distribution  which  correct  these  problems.   Patches  and  new
    distributions of version 1.0 and version 2.0 are available at:

        ftp://ftp.isc.org/isc/dhcp/dhcp-1.0.0-1.0pl1.diff.gz
        ftp://ftp.isc.org/isc/dhcp/dhcp-2.0b1pl0-2.0b1pl1.diff.gz
        ftp://ftp.isc.org/isc/dhcp/dhcp-1.0pl1.tar.gz
        ftp://ftp.isc.org/isc/dhcp/dhcp-2.0b1pl1.tar.gz