MiracleLinux 9 : dhcp-4.4.2-18.b1.el9 (AXSA:2023-5581:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5581:03 advisory. dhcp: option refcount overflow when leasequery is enabled leading to dhcpd abort CVE-2022-2928 dhcp: DHCP memory leak CVE-2022-2929 Tenable has...

RHEL 8 : dhcp (RHSA-2023:3000)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3000 advisory. The Dynamic Host Configuration Protocol DHCP is a protocol that allows individual devices on an IP network to get their own network...

SUSE-SU-2022:3992-1 Security update for dhcp

This update for dhcp fixes the following issues: - CVE-2022-2928: Fixed an option refcount overflow bsc1203988. - CVE-2022-2929: Fixed a DHCP memory leak bsc1203989...

SUSE-SU-2022:3991-1 Security update for dhcp

This update for dhcp fixes the following issues: - CVE-2022-2928: Fixed an option refcount overflow bsc1203988. - CVE-2022-2929: Fixed a DHCP memory leak bsc1203989...

CVE-2022-2928 An option refcount overflow exists in dhcpd

In ISC DHCP 4.4.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addoption, it increases the option's refcount field. However, there is not a corresponding call to optiondereference to decrement the refcount field. The function addoption is on...