ISC dhclient does not strip or escape certain shell meta-characters in dhcpd responses, allowing a rogue server or party with with escalated privileges on the server to cause remote code execution on the client. Versions 3.0.x through 4.2.x are affected.
74c7470b833e5a628636a879d280edb69870985e9edf88bd5ec22165c18462fa