Ubuntu Security Notice 3586-2 - USN-3586-1 fixed a vulnerability in DHCP. This update provides the corresponding update for Ubuntu 12.04 ESM. Felix Wilhelm discovered that the DHCP client incorrectly handled certain malformed responses. A remote attacker could use this issue to cause the DHCP client to crash, resulting in a denial of service, or possibly execute arbitrary code. In the default installation, attackers would be isolated by the dhclient AppArmor profile. Various other issues were also addressed.
87bf0b43aecf798e53a7ec0e8497cf38db7e719785f0c2616c8cddec7692bcc1Gentoo Linux Security Advisory 201804-5 - Multiple vulnerabilities have been found in ISC DHCP, the worst of which could allow for the remote execution of arbitrary code. Versions less than 4.3.6_p1 are affected.
c6e07b5b63749de8286aac89e5800759dbffd01ff2abbf285839abe25d7a5078Red Hat Security Advisory 2018-0483-01 - The Dynamic Host Configuration Protocol is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and administer DHCP on a network. Multiple security issues were addressed.
f75808606a5eb96619b1e93cb3f64a740d37b9d302f14a5af9ac2ea082fd10efRed Hat Security Advisory 2018-0469-01 - The Dynamic Host Configuration Protocol is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and administer DHCP on a network. Security Fix: dhcp: Buffer overflow in dhclient possibly allowing code execution triggered by malicious server.
d6bde2be7379620637e06c8d6a232a2cfd7d23c299ee203448399730f4e1c294Debian Linux Security Advisory 4133-1 - Several vulnerabilities have been discovered in the ISC DHCP client, relay and server.
c58ee2bf8108db3389764cac6cd30a9da1198010a531df96cc285fd0d9113f86Slackware Security Advisory - New dhcp packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues.
0405a3963ef4abb21a8b8c64337f3b6e10e2675de810eef9e4f102260a746a47Ubuntu Security Notice 3586-1 - Konstantin Orekhov discovered that the DHCP server incorrectly handled a large number of concurrent TCP sessions. A remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. It was discovered that the DHCP server incorrectly handled socket descriptors. A remote attacker could possibly use this issue to cause a denial of service. Various other issues were also addressed.
dedc59b7599b4b9b715d94bc53abc59c0eb765ff7b858e2fedaea16f08651d22
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed