6 matches found
Debian DLA-506-1 : dhcpcd5 security update
Two vulnerabilities were discovered in dhcpcd5 a DHCP client package. A remote on a local network attacker can possibly execute arbitrary code or cause a denial of service attack by crafted messages. CVE-2014-7912 The getoption function does not validate the relationship between length fields and...
[SECURITY] [DLA 506-1] dhcpcd5 security update
Package : dhcpcd5 Version : 5.5.6-1+deb7u2 CVE ID : CVE-2014-7912 CVE-2014-7913 Debian Bug : N/A Two vulnerabilities were discovered in dhcpcd5 a DHCP client package. A remote on a local network attacker can possibly execute arbitrary code or cause a denial of service attack by crafted messages...
FreeBSD : dhcpcd -- remote code execution/denial of service (092156c9-04d7-11e6-b1ce-002590263bf5)
MITRE reports : The getoption function in dhcp.c in dhcpcd before 6.2.0, as used in dhcpcd 5.x in Android before 5.1 and other products, does not validate the relationship between length fields and the amount of data, which allows remote DHCP servers to execute arbitrary code or cause a denial of...
UBUNTU-CVE-2014-7912
The getoption function in dhcp.c in dhcpcd before 6.2.0, as used in dhcpcd 5.x in Android before 5.1 and other products, does not validate the relationship between length fields and the amount of data, which allows remote DHCP servers to execute arbitrary code or cause a denial of service memory...
CVE-2014-7912
The getoption function in dhcp.c in dhcpcd before 6.2.0, as used in dhcpcd 5.x in Android before 5.1 and other products, does not validate the relationship between length fields and the amount of data, which allows remote DHCP servers to execute arbitrary code or cause a denial of service memory...
CVE-2014-7912
CVE-2014-7912 affects the get_option function in dhcp.c of dhcpcd prior to 6.2.0 (used in dhcpcd 5.x on Android before 5.1 and other products). The vulnerability arises because length fields are not validated against the amount of data, enabling remote DHCP servers to cause memory corruption via ...