Lucene search

K

[email protected]NVD:CVE-2022-2928

HistoryOct 07, 2022 - 5:15 a.m.

CVE-2022-2928

2022-10-0705:15:08

CWE-476

[email protected]

web.nvd.nist.gov

6.5 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

43.6%

In ISC DHCP 4.4.0 -> 4.4.3, ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16-P1, when the function option_code_hash_lookup() is called from add_option(), it increases the option’s refcount field. However, there is not a corresponding call to option_dereference() to decrement the refcount field. The function add_option() is only used in server responses to lease query packets. Each lease query response calls this function for several options, so eventually, the reference counters could overflow and cause the server to abort.

Affected configurations

NVD

Node

iscdhcpRange4.4.0–4.4.3

OR

iscdhcpMatch4.1-esvr1

OR

iscdhcpMatch4.1-esvr10

OR

iscdhcpMatch4.1-esvr10_b1

OR

iscdhcpMatch4.1-esvr10_rc1

OR

iscdhcpMatch4.1-esvr10b1

OR

iscdhcpMatch4.1-esvr10rc1

OR

iscdhcpMatch4.1-esvr11

OR

iscdhcpMatch4.1-esvr11_b1

OR

iscdhcpMatch4.1-esvr11_rc1

OR

iscdhcpMatch4.1-esvr11_rc2

OR

iscdhcpMatch4.1-esvr11b1

OR

iscdhcpMatch4.1-esvr11rc1

OR

iscdhcpMatch4.1-esvr11rc2

OR

iscdhcpMatch4.1-esvr12

OR

iscdhcpMatch4.1-esvr12-p1

OR

iscdhcpMatch4.1-esvr12_b1

OR

iscdhcpMatch4.1-esvr12_p1

OR

iscdhcpMatch4.1-esvr12b1

OR

iscdhcpMatch4.1-esvr13

OR

iscdhcpMatch4.1-esvr13_b1

OR

iscdhcpMatch4.1-esvr13b1

OR

iscdhcpMatch4.1-esvr14

OR

iscdhcpMatch4.1-esvr14_b1

OR

iscdhcpMatch4.1-esvr14b1

OR

iscdhcpMatch4.1-esvr15

OR

iscdhcpMatch4.1-esvr15-p1

OR

iscdhcpMatch4.1-esvr15_b1

OR

iscdhcpMatch4.1-esvr16

OR

iscdhcpMatch4.1-esvr16-p1

Node

debiandebian_linuxMatch10.0

Node

fedoraprojectfedoraMatch35

OR

fedoraprojectfedoraMatch36

OR

fedoraprojectfedoraMatch37

References

kb.isc.org/docs/cve-2022-2928

lists.debian.org/debian-lts-announce/2022/10/msg00015.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2SARIK7KZ7MGQIWDRWZFAOSQSPXY4GOU/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QQXYCIWUDILRCNBAIMVFCSGXBRKEPB4K/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T6IBFH4MRRNJQVWEKILQ6I6CXWW766FX/

security.gentoo.org/glsa/202305-22

6.5 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

43.6%

Related for NVD:CVE-2022-2928