Lucene search
UbuntuUSN-1309-1HistoryDec 15, 2011 - 12:00 a.m.
DHCP vulnerability
2011-12-1500:00:00
ubuntu.com
27
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.4 Medium
AI Score
Confidence
Low
0.028 Low
EPSS
Percentile
90.7%
Releases
- Ubuntu 11.10
- Ubuntu 11.04
Packages
- isc-dhcp - DHCP server and client
Details
It was discovered that the DHCP server incorrectly handled certain
malformed packets when configured to evaluate regular expressions. A remote
attacker could use this issue to cause DHCP to crash, resulting in a denial
of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 11.10 | noarch | isc-dhcp-server | < 4.1.1-P1-17ubuntu10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | isc-dhcp-client | < 4.1.1-P1-17ubuntu10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | isc-dhcp-client-dbg | < 4.1.1-P1-17ubuntu10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | isc-dhcp-client-udeb | < 4.1.1-P1-17ubuntu10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | isc-dhcp-common | < 4.1.1-P1-17ubuntu10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | isc-dhcp-dev | < 4.1.1-P1-17ubuntu10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | isc-dhcp-relay | < 4.1.1-P1-17ubuntu10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | isc-dhcp-relay-dbg | < 4.1.1-P1-17ubuntu10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | isc-dhcp-server-dbg | < 4.1.1-P1-17ubuntu10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | isc-dhcp-server-ldap | < 4.1.1-P1-17ubuntu10.1 | UNKNOWN |
References
Related
freebsd
freebsd
isc-dhcp-server -- Remote DoS
2011-12-07 00:00:00
openvas
openvas
Ubuntu Update for isc-dhcp USN-1309-1
2011-12-16 00:00:00
CentOS Update for dhclient CESA-2011:1819 centos6
2012-07-30 00:00:00
RedHat Update for dhcp RHSA-2011:1819-01
2012-07-09 00:00:00
nessus
nessus
RHEL 6 : dhcp (RHSA-2011:1819)
2011-12-15 00:00:00
CentOS 6 : dhcp (CESA-2011:1819)
2011-12-23 00:00:00
cvelist
cvelist
CVE-2011-4539
2011-12-08 11:00:00
cve
cve
CVE-2011-4539
2011-12-08 11:55:02
debiancve
debiancve
CVE-2011-4539
2011-12-08 11:55:02
amazon
amazon
Medium: dhcp
2012-01-05 20:58:00
securityvulns
securityvulns
ISC DHCP DoS
2011-12-11 00:00:00
redhat
redhat
(RHSA-2011:1819) Moderate: dhcp security update
2011-12-14 00:00:00
(RHSA-2011:1850) Important: rhev-hypervisor6 security and bug fix update
2011-12-22 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:07:23
prion
prion
Design/Logic Flaw
2011-12-08 11:55:00
fedora
fedora
[SECURITY] Fedora 16 Update: dhcp-4.2.3-4.P1.fc16
2011-12-14 23:32:30
[SECURITY] Fedora 16 Update: dhcp-4.2.3-5.P2.fc16
2012-01-22 05:25:38
[SECURITY] Fedora 15 Update: dhcp-4.2.1-14.P1.fc15
2012-01-02 21:49:27
ubuntucve
ubuntucve
CVE-2011-4539
2011-12-08 00:00:00
oraclelinux
oraclelinux
dhcp security update
2011-12-16 00:00:00
nvd
nvd
CVE-2011-4539
2011-12-08 11:55:02
centos
centos
dhclient, dhcp security update
2011-12-22 15:44:59
osv
osv
isc-dhcp - denial of service
2012-08-04 00:00:00
isc-dhcp - denial of service
2012-08-04 00:00:00
debian
debian
[SECURITY] [DSA 2519-1] isc-dhcp security update
2012-08-01 18:34:11
[SECURITY] [DSA 2519-2] isc-dhcp regression
2012-08-04 11:10:27
slackware
slackware
[slackware-security] dhcp
2012-08-24 22:54:35
gentoo
gentoo
ISC DHCP: Denial of service
2013-01-09 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.4 Medium
AI Score
Confidence
Low
0.028 Low
EPSS
Percentile
90.7%
Related for USN-1309-1