Search CVE reports
51 – 60 of 95 results
An attacker can leverage this flaw to gradually erode available memory to the point where named crashes for lack of resources. Upon restart the attacker would have to begin again, but nevertheless there is the potential to deny service.
2 affected packages
bind9, isc-dhcp
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| bind9 | — | — | Fixed | Not affected | Not affected |
| isc-dhcp | — | — | Not affected | Not affected | Not affected |
The underlying bug might cause read past end of the buffer and either read memory it should not read, or crash the process.
2 affected packages
bind9, isc-dhcp
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| bind9 | — | — | Fixed | Not affected | Not affected |
| isc-dhcp | — | — | Not affected | Not affected | Not affected |
Some fixes available 13 of 23
By flooding the target resolver with queries exploiting this flaw an attacker can significantly impair the resolver's performance, effectively denying legitimate clients access to the DNS resolution service.
3 affected packages
bind9, bind9-libs, isc-dhcp
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| bind9 | Fixed | Fixed | Fixed | Fixed | Fixed |
| bind9-libs | Not in release | Not in release | Needs evaluation | Needs evaluation | Not in release |
| isc-dhcp | Vulnerable | Vulnerable | Not affected | Not affected | Not affected |
In ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16, ISC DHCP 4.4.0 -> 4.4.2 (Other branches of ISC DHCP (i.e., releases in the 4.0.x series or lower and releases in the 4.3.x series) are beyond their End-of-Life (EOL) and no longer supported...
1 affected package
isc-dhcp
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| isc-dhcp | — | — | Fixed | Fixed | Fixed |
An issue was discovered in dhclient 4.3.1-6 due to an embedded path variable.
2 affected packages
dhcp3, isc-dhcp
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| dhcp3 | — | — | — | — | — |
| isc-dhcp | — | — | — | — | — |
Some fixes available 8 of 12
dhcp6.c in dhcpcd before 6.11.7 and 7.x before 7.2.2 has a buffer over-read in the D6_OPTION_PD_EXCLUDE feature.
1 affected package
dhcpcd5
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| dhcpcd5 | Not in release | Not in release | Fixed | Fixed | Vulnerable |
There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There was also a bug in dhcpd relating to the use of this function per its documentation, but the bug in...
1 affected package
isc-dhcp
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| isc-dhcp | — | — | — | — | Fixed |
Some fixes available 9 of 12
dhcp.c in dhcpcd before 7.2.1 contains a 1-byte read overflow with DHO_OPTSOVERLOADED.
1 affected package
dhcpcd5
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| dhcpcd5 | Not in release | Not in release | Fixed | Fixed | Vulnerable |
Some fixes available 8 of 12
auth.c in dhcpcd before 7.2.1 allowed attackers to infer secrets by performing latency attacks.
1 affected package
dhcpcd5
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| dhcpcd5 | Not in release | Not in release | Fixed | Fixed | Vulnerable |
Some fixes available 1 of 3
dhcpcd before 7.2.1 contains a buffer overflow in dhcp6_findna in dhcp6.c when reading NA/TA addresses.
1 affected package
dhcpcd5
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| dhcpcd5 | — | — | — | — | Not affected |