6.1 Medium
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:A/AC:L/Au:N/C:N/I:N/A:C
0.074 Low
EPSS
Percentile
93.2%
Several security vulnerabilities affecting ISC dhcpd, a server for
automatic IP address assignment, have been discovered. Additionally, the
latest security update for isc-dhcp, DSA-2516-1,
did not properly apply the patches for
CVE-2012-3571
and
CVE-2012-3954.
This has been addressed
in this additional update.
For the stable distribution (squeeze), this problem has been fixed in
version 4.1.1-P1-15+squeeze6.
For the testing (wheezy) and unstable (sid) distributions, this problem
will be fixed soon.
We recommend that you upgrade your isc-dhcp packages.