Commit 38e980a6 authored Jun 24, 2021 by Yu Watanabe

sd-dhcp-client: tentatively ignore FORCERENEW command

This makes DHCP client ignore FORCERENEW requests, as unauthenticated
FORCERENEW requests causes a security issue (TALOS-2020-1142, CVE-2020-13529).

Let's re-enable this after RFC3118 (Authentication for DHCP Messages)
and/or RFC6704 (Forcerenew Nonce Authentication) are implemented.

Fixes #16774.

parent 551ad0b7

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit 3ec1234d
· Jul 13, 2021

mentioned in commit 3ec1234d

mentioned in commit 3ec1234d1e3195849088b2a3c70fbdefebeadc35

Toggle commit list
mirror @mirror
mentioned in commit 70785899
· Jul 21, 2021

mentioned in commit 70785899

mentioned in commit 707858990ea74040bab02b33ba5cb52c40094ad5

Toggle commit list
mirror @mirror
mentioned in commit f53d6101
· Jul 21, 2021

mentioned in commit f53d6101

mentioned in commit f53d610144ca729a7e727fc6d3e86e3a4a2a53ed

Toggle commit list

Please register or to comment