CVE-2023-50433

marshall in dhcppacket.c in simple-dhcp-server through ec976d2 allows remote attackers to cause a denial of service by sending a malicious DHCP packet. The crash is caused by a type confusion bug that results in a large memory allocation; when this memory allocation fails the DHCP server will cra...

CVE-2023-50432

simple-dhcp-server through ec976d2 allows remote attackers to cause a denial of service daemon crash by sending a DHCP packet without any option fields, which causes freepacket in dhcppacket.c to dereference a NULL pointer...

PT-2024-13938 · Unknown · Simple-Dhcp-Server

Name of the Vulnerable Software and Affected Versions: simple-dhcp-server versions through ec976d2 Description: The issue allows remote attackers to cause a denial of service by sending a malicious DHCP packet. This is caused by a type confusion bug that results in a large memory allocation. When...

PT-2024-13937 · Unknown · Simple-Dhcp-Server

Name of the Vulnerable Software and Affected Versions: simple-dhcp-server through ec976d2 Description: The issue allows remote attackers to cause a denial of service daemon crash by sending a DHCP packet without any option fields, which causes free packet in dhcp packet.c to dereference a NULL...

CVE-2023-50433

This CVE affects simple-dhcp-server (marshall in dhcp_packet.c). A type confusion bug can trigger an excessively large memory allocation, causing a remote denial-of-service when a crafted DHCP packet is processed and the allocation fails. The issue is documented across multiple sources (NVD/Red H...