ISC DHCP 3.1-ESV-R3, 4.1-ESV-R3 and 4.2.2 are now available for download

Larissa Shapiro larissas at isc.org
Wed Aug 10 15:05:37 UTC 2011 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

    ISC DHCP 3.1-ESV-R3, 4.1-ESV-R3 and 4.2.2 are now available for
download.

These are maintenance and SECURITY releases of ISC DHCP, and fix one
security related bug as well as adding other functionality and bug fixes.

The security advisory is at:
http://www.isc.org/software/dhcp/advisories/cve-2011-2748 and will be
in an email immediately following this one.

Full release notes for each version are available in the ISC Knowledge
Base at:

DHCP 3.1-ESV-R3:
https://deepthought.isc.org/index.php?/article/AA-00430/82/
DHCP 4.1-ESV-R3:
https://deepthought.isc.org/index.php?/article/AA-00431/82/
DHCP 4.2.2: https://deepthought.isc.org/index.php?/article/AA-00432/82/

For a complete list of changes from any previous
release, please consult the RELNOTES file within the source
distribution, or on our website.


The releases, and their OpenPGP-signatures are available now from:

DHCP 3.1-ESV-R1:

http://www.isc.org/software/dhcp/31-esv-r3
ftp://ftp.isc.org/isc/dhcp/dhcp-3.1-ESV-R3.tar.gz
ftp://ftp.isc.org/isc/dhcp/dhcp-3.1-ESV-R3.tar.gz .sha512.asc
ftp://ftp.isc.org/isc/dhcp/dhcp-3.1-ESV-R3.tar.gz .sha256.asc
ftp://ftp.isc.org/isc/dhcp/dhcp-3.1-ESV-R3.tar .gz.sha1.asc

DHCP 4.1-ESV-R2:

http://www.isc.org/software/dhcp/41-esv-r3
ftp://ftp.isc.org/isc/dhcp/dhcp-4.1-ESV-R3.tar.gz
ftp://ftp.isc.org/isc/dhcp/dhcp-4.1-ESV-R3.tar.gz .sha512.asc
ftp://ftp.isc.org/isc/dhcp/dhcp-4.1-ESV-R3.tar.gz .sha256.asc
ftp://ftp.isc.org/isc/dhcp/dhcp-4.1-ESV-R3.tar .gz.sha1.asc

DHCP 4.2.1-P1:

http://www.isc.org/software/dhcp/422
ftp://ftp.isc.org/isc/dhcp/dhcp-4.2.2.tar.gz
ftp://ftp.isc.org/isc/dhcp/dhcp- 4.2.2.tar.gz.sha512.asc
ftp://ftp.isc.org/isc/dhcp/dhcp- 4.2.2.tar.gz.sha256.asc
ftp://ftp.isc.org/isc/dhcp/dhcp- 4.2.2.tar.gz.sha1.asc


ISC's Release Signing Key can be obtained at:

http://www.isc.org/about/openpgp/

Security Fix:
Two packets were found that cause a server to halt.  The code  has
been updated to properly process or reject the packets as
appropriate.  Thanks to David Zych at University of Illinois  for
reporting this issue.  [ISC-Bugs #24960]  One CVE number for each
class of packet.  CVE-2011-2748  CVE-2011-2749

Known Issues In This Release:
In order to support asynchronous DDNS in 4.2.0 we modified how the
DDNS code interacts with leases. Some of these changes interact badly
with configurations that include multiple instances of the same lease
and can cause a server to crash. We have included some code to help
identify and log these issues and are continuing work on a better fix.
However these are mis-configurations and the only complete fix is to
modfiy your configuration file to avoid them. You should verify that
any address is in only one range, pool or fixed address statement. For
example an IPv6 address should not be in a range for both a temporary
address pool and a non-temporary address pool. While this issue can
cause the server to crash, it is not a security issue as it requires a
specific type of mis-configuration in the configuration file.

Support:
Product support information is available
on http://www.isc.org/services/support for paid support options. Free
support is provided by our user community via a mailing list.
Information on all public email lists is available
at https://lists.isc.org/mailman/listinfo.

Thank You:
Thank you to everyone who assisted us in making this release possible.
If you would like to contribute to ISC to assist us in continuing to
make quality open source software, please visit our donations page
at http://www.isc.org/supportisc.

More Information:
For more information on how to install, configure and run this
software, as well as how to find documentation and report bugs, please
consult the README file.

- -- 
Larissa Shapiro
Internet Systems Consortium Product Manager
Technology Leadership for the Common Good
+1 650 423 1335
www.isc.org

- -- 
Larissa Shapiro
Internet Systems Consortium Product Manager
Technology Leadership for the Common Good
+1 650 423 1335
www.isc.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.14 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEcBAEBAgAGBQJOQp5BAAoJEBOIp87tasiUWxgH/iNkMSXqGA9NcSC0TSZbFNzg
TQR2qYTwrucoXDuqqwNUACgm4v8xV4G4YdDintARNBRmnM/E0JPuyCM67NqpSzGp
KTTOeR7TaU4MMRkSiGlZalP8HISmgXcsPRDS8ZoFlVQ2eQxLsIOTbCnVL0Wdr+7F
dVfP7dv+IYImX3RUxeFDrZOCp9k3bEQd/lDgykOPympnrZc+pkBH7PhfreozdtQN
sLuHyc4H/Ysim1YrR6GqqgPQMJ+V17zetl7s5dhfZFjIhFEuyHJgu/wDoSCV7BXn
C1afEC9WNxm2puIcJ4Uex/vT+NSPy3j0wEdW0xneO2z1avdaIyUqFue1DKH3m6A=
=6T+O
-----END PGP SIGNATURE-----

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/dhcp-users/attachments/20110810/3a03be9b/attachment.html>

More information about the dhcp-users mailing list