Ubuntu
dhcp3 package

lp://staging/ubuntu/intrepid-updates/dhcp3

  1. Intrepid (8.10)
  2. intrepid-updates
Created by James Westby and last modified
Get this branch:
bzr branch lp://staging/ubuntu/intrepid-updates/dhcp3
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Mature

Recent revisions

39. By Jamie Strandboge

debian/patches/00list: put CVE-2009-0692.dpatch before the ldap patches,
so it doesn't get rolled back when building the non-ldap dhcp packages.
Please note that on Ubuntu 8.10 and later this CVE is reduced to a
denial of service due to FORTIFY_SOURCE compiler protections. Ubuntu
9.04 is further protected with an AppArmor profile. Thanks to Colin
Watson for discovering the issue.

38. By Jamie Strandboge

* SECURITY UPDATE: stack overflow when connecting to malicious DHCP v4
  server
  - debian/patches/CVE-2009-0692.dpatch: update script_write_params() in
    dhclient.c to verify that length of data is not longer than netmask
    (iaddr)
  - CVE-2009-0692

37. By Kees Cook

debian/{control,rules}: enable PIE hardening

36. By Martin Pitt

* Merge from debian unstable. Remaining Ubuntu changes:
  - debian/control, debian/dhcp3-server.init.d: LSB init script.
    (Debian #486508)
  - Deroot server (Debian #308832)
    + debian/patches/droppriv.dpatch, deroot-server.dpatch: Code changes.
    + debian/control: Build-depend on libcap-dev.
    + debian/dhcp3-server.post{inst,rm}: Create/remove dhcpd system user.
    + debian/dhcp3-server.init.d: Create paths with appropriate permissions
      for dhcpd system user access.
  - Send hostname to DHCP server by default (LP #10239, Debian #151820):
    + debian/patches/dynamic-hostname.dpatch: Add support for a new string
      type 'h' which behaves like 't' except that '<hostname>' is changed to
      the current hostname. Change 'host-name' DHCP option type from 't' to 'h'.
    + debian/dhclient.conf: Enable send-hostname by default.
  - debian/rules: Remove client/scripts/debian on clean again.
    (Debian #486514)
  - dhclient-onetry-call-clientscript.dpatch: Call 'dhclient-script FAIL'
    when failing to get an address also when operating in oneshot mode (-1).
    This fixes avahi-autoipd invocation through dhcdbd. (Debian #486520)
  - debian/dhcp3-server.init.d, debian/dhcp3-server.postinst: Do not install
    unnecessary rc.d symlinks for levels 0 and 6, for faster shutdown.
    (Debian #486518)
  - debian/dhclient-script.linux: Do not clobber old search/domain values if
    we didn't get any from the DHCP response. (Debian #486535)
  - debian/patches/dhcpd.conf-subnet-examples.dpatch: Give an example for
    subnet-mask in dhcpd.conf. (LP #26661)
  - dhclient-more-debug.dpatch: Show the requested/offered client IP in log
    output, for better debugging. (LP #35265, Debian #486611)
  - debian/dhclient-script.linux: Wait for /etc/resolv.conf to become writable.
  - revert-next-server.dpatch: Revert the need of the next-server option in
    dhcpd.conf so it points to the own IP again for tftp if the option is not
    set. (Patch by Oliver Grawert; disputed upstream)
  - debian/dhcp3-server.init.d: Allow LTSP to override default configuration
    in /etc/ltsp/dhcpd.conf. Point that out in a header comment in
    debian/dhcpd.conf. (Ubuntu specific)
  - debian/dhcp3-server.config: Drop debconf question to medium. (Ubuntu
    specific)
* Drop obsolete Ubuntu changes:
  - debian/dhclient.conf: Get the interface-mtu parameter again. Previous
    Ubuntu versions ignored it because of broken old DHCP servers which hand
    out the wrong value. (LP#61989) However, this breaks correct and
    deliberately sent non-default values, which is a bigger pain. If this is
    still an issue, a better fix is to discard unplausibly low values only.
  - Drop the client derooting patch. It is very intrusive, never offered true
    protection (susceptible to $PATH injection and other bypasses), and is a
    constant source of bugs. (LP: #39249)
  - Drop the pm-utils hook for stopping/starting dhcp3-server on
    suspend/resume. This was necessary in the acpi-support ages (which tore
    down ethernet interfaces on resume), but pm-utils does not do that any
    more.
* debian/patches/deroot-server.dpatch: Juggle Makefile.dist patch to not
  conflict with ldap patch.
* dhclient-more-debug.dpatch: Fix printing of address when renewing a lease
  (printed "<null address>" before). (LP: #35265)

35. By Martin Pitt

Add debian/patches/dhclient-more-debug.dpatch: Show the requested/offered
client IP in log output, for better debugging. Thanks to Peter Miller for
the patch! (Closes: #35265)

34. By Oliver Grawert

* give the pm script a better matching name (90dhcp3-server
  instead of 90dhcpd)
* clean up build tree properly

33. By Oliver Grawert

move the old acpi suspend/resume scripts properly to pm-utils

32. By Michael Vogt

* debian/dhcp3-client.postinst:
  - change the priority of dhcp3-client/dhclient-needs-restarting
    from high to medium (LP: #174128)

31. By Martin Pitt

debian/dhcpd.conf: Add a warning that /etc/ltsp/dhcpd.conf will be used as
configuration file if it exists. (LP: #196700)

30. By Martin Pitt

debian/dhcp3-server.init.d: Put interface names after the dhcp3d options,
to comply to manpage. Putting them first causes problems when using
multiple interfaces under some conditions. (LP: #187434)

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp://staging/ubuntu/lucid/dhcp3
This branch contains Public information 
Everyone can see this information.

Subscribers