Commit 3ec1234d authored Jun 24, 2021 by Yu Watanabe Committed by Zbigniew Jędrzejewski-Szmek Jul 12, 2021

sd-dhcp-client: tentatively ignore FORCERENEW command

This makes DHCP client ignore FORCERENEW requests, as unauthenticated
FORCERENEW requests causes a security issue (TALOS-2020-1142, CVE-2020-13529).

Let's re-enable this after RFC3118 (Authentication for DHCP Messages)
and/or RFC6704 (Forcerenew Nonce Authentication) are implemented.

Fixes #16774.

(cherry picked from commit 38e980a6)

parent fe13c0bd

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit 70785899
· Jul 21, 2021

mentioned in commit 70785899

mentioned in commit 707858990ea74040bab02b33ba5cb52c40094ad5

Toggle commit list
mirror @mirror
mentioned in commit f53d6101
· Jul 21, 2021

mentioned in commit f53d6101

mentioned in commit f53d610144ca729a7e727fc6d3e86e3a4a2a53ed

Toggle commit list

Please register or to comment