Lucene search

K

Gentoo FoundationGLSA-201301-06

HistoryJan 09, 2013 - 12:00 a.m.

ISC DHCP: Denial of service

2013-01-0900:00:00

Gentoo Foundation

security.gentoo.org

13

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.971 High

EPSS

Percentile

99.8%

Background

ISC DHCP is a Dynamic Host Configuration Protocol (DHCP) client/server.

Description

Multiple vulnerabilities have been discovered in ISC DHCP. Please review the CVE identifiers referenced below for details.

Impact

The vulnerabilities might allow remote attackers to execute arbitrary code or cause a Denial of Service.

Workaround

There is no known workaround at this time.

Resolution

All ISC DHCP users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose "&gt;=net-misc/dhcp-4.2.4_p2"

OSVersionArchitecturePackageVersionFilename
Gentooanyallnet-misc/dhcp< 4.2.4_p2UNKNOWN

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.971 High

EPSS

Percentile

99.8%

Related for GLSA-201301-06

nessus55 openvas77 fedora11 securityvulns8 slackware2 oraclelinux3 osv3 debian4 freebsd3 redhat2 ubuntu3 centos3 amazon1 ubuntucve4 veracode3 cve5 checkpoint_advisories1 prion4 debiancve4 canvas1 cisa1 f51