10 matches found
EUVD-2025-27981
Malicious code in bioql PyPI...
CVE-2025-40779
A vulnerability was found in Kea. When an attacker who is an existing client with an assigned IP sends a crafted unicast packet directly to the server's IP and Kea cannot find any subnets that match that client's credentials, the server crashes causing a Denial of Service via assertion/NULL-path...
CVE-2025-40779
If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the kea-dhcp4 process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem...
CVE-2025-40779
If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the kea-dhcp4 process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem...
UBUNTU-CVE-2025-40779
If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the kea-dhcp4 process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem...
CVE-2025-40779 Kea crash upon interaction between specific client options and subnet selection
If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the kea-dhcp4 process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem...
CVE-2025-40779
CVE-2025-40779 affects Kea DHCP server: when a DHCPv4 client unicast request includes specific options and Kea cannot select a subnet, kea-dhcp4 aborts with an assertion. Affected versions are Kea 2.7.1–2.7.9, 3.0.0, and 3.1.0. Public advisories and Nessus plugins indicate fixes in Kea 3.0.1 (and...
CVE-2025-40779 Kea crash upon interaction between specific client options and subnet selection
If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the kea-dhcp4 process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem...
PT-2025-34937
Name of the Vulnerable Software and Affected Versions: Kea versions 2.7.1 through 2.7.9 Kea version 3.0.0 Kea version 3.1.0 Description: If a DHCPv4 client sends a request with specific options and Kea fails to find an appropriate subnet for the client, the kea-dhcp4 process will abort with an...
OracleVM 3.4 : dhcp (OVMSA-2018-0023)
The remote OracleVM system is missing necessary patches to address critical security updates : - Added oracle-errwarn-message.patch - Resolves: 1550085 - CVE-2018-5733 Avoid reference overflow 12:4.1.1-53.P1.2 - Resolves: 1550083 - CVE-2018-5732 Avoid options buffer overflow - Resolves: 1063217 -...