Lucene search
UbuntuUSN-4969-1HistoryMay 27, 2021 - 12:00 a.m.
DHCP vulnerability
2021-05-2700:00:00
ubuntu.com
109
dhcp server client ubuntu 21.04 20.10 20.04 lts 18.04 esm lease file parsing denial of service
CVSS2
3.3
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:A/AC:L/Au:N/C:N/I:N/A:P
CVSS3
7.4
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
AI Score
7.7
Confidence
High
EPSS
0.003
Percentile
68.3%
Releases
- Ubuntu 21.04
- Ubuntu 20.10
- Ubuntu 20.04 LTS
- Ubuntu 18.04 ESM
Packages
- isc-dhcp - DHCP server and client
Details
Jon Franklin and Pawel Wieczorkiewicz discovered that DHCP incorrectly
handled lease file parsing. A remote attacker could possibly use this issue
to cause DHCP to crash, resulting in a denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 21.04 | noarch | isc-dhcp-client | < 4.4.1-2.2ubuntu6.1 | UNKNOWN |
| Ubuntu | 21.04 | noarch | isc-dhcp-client-dbgsym | < 4.4.1-2.2ubuntu6.1 | UNKNOWN |
| Ubuntu | 21.04 | noarch | isc-dhcp-client-ddns | < 4.4.1-2.2ubuntu6.1 | UNKNOWN |
| Ubuntu | 21.04 | noarch | isc-dhcp-client-ddns-dbgsym | < 4.4.1-2.2ubuntu6.1 | UNKNOWN |
| Ubuntu | 21.04 | noarch | isc-dhcp-common | < 4.4.1-2.2ubuntu6.1 | UNKNOWN |
| Ubuntu | 21.04 | noarch | isc-dhcp-dev | < 4.4.1-2.2ubuntu6.1 | UNKNOWN |
| Ubuntu | 21.04 | noarch | isc-dhcp-relay | < 4.4.1-2.2ubuntu6.1 | UNKNOWN |
| Ubuntu | 21.04 | noarch | isc-dhcp-relay-dbgsym | < 4.4.1-2.2ubuntu6.1 | UNKNOWN |
| Ubuntu | 21.04 | noarch | isc-dhcp-server | < 4.4.1-2.2ubuntu6.1 | UNKNOWN |
| Ubuntu | 21.04 | noarch | isc-dhcp-server-dbgsym | < 4.4.1-2.2ubuntu6.1 | UNKNOWN |
References
Related
nessus
nessus
EulerOS 2.0 SP9 : dhcp (EulerOS-SA-2021-2267)
2021-08-09 00:00:00
Amazon Linux AMI : dhcp (ALAS-2021-1510)
2021-07-13 00:00:00
RHEL 6 : dhcp (RHSA-2021:2419)
2021-12-02 00:00:00
suse
suse
Security update for dhcp (important)
2021-07-11 00:00:00
Security update for dhcp (important)
2021-06-04 00:00:00
prion
prion
Input validation
2021-05-26 22:15:00
mageia
mageia
Updated dhcp packages fix a security vulnerability
2021-07-01 02:58:41
osv
osv
CVE-2021-25217
2021-05-26 22:15:07
isc-dhcp vulnerability
2021-05-27 10:41:47
isc-dhcp - security update
2021-06-03 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2021:1822-1)
2021-06-09 00:00:00
Mageia: Security Advisory (MGASA-2021-0307)
2022-01-28 00:00:00
CentOS: Security Advisory for dhclient (CESA-2021:2357)
2021-06-15 00:00:00
redhat
redhat
(RHSA-2021:2418) Important: dhcp security update
2021-06-14 18:58:51
(RHSA-2021:2357) Important: dhcp security update
2021-06-09 09:11:43
(RHSA-2021:2405) Important: dhcp security update
2021-06-14 13:09:38
cve
cve
CVE-2021-25217
2021-05-26 22:15:07
nvd
nvd
CVE-2021-25217
2021-05-26 22:15:07
amazon
amazon
Important: dhcp
2021-06-16 20:37:00
Important: dhcp
2021-07-08 18:38:00
ibm
ibm
Security Bulletin: TS4500 is affected by CVE-2021-25217
2021-10-13 01:39:17
Security Bulletin: ISC DHCP for IBM i is affected by CVE-2021-25217
2021-09-17 21:17:32
almalinux
almalinux
Important: dhcp security update
2021-06-09 09:19:12
rocky
rocky
dhcp security update
2021-06-09 09:19:12
oraclelinux
oraclelinux
dhcp security update
2021-06-10 00:00:00
dhcp security update
2021-06-17 00:00:00
dhcp security update
2021-06-10 00:00:00
redhatcve
redhatcve
CVE-2021-25217
2021-05-27 07:15:48
cbl_mariner
cbl_mariner
CVE-2021-25217 affecting package dhcp 4.4.2-3
2021-06-09 03:50:39
CVE-2021-25217 affecting package dhcp for versions less than 4.4.2-4
2022-04-09 06:51:48
slackware
slackware
[slackware-security] dhcp
2021-05-29 17:45:10
veracode
veracode
Denial Of Service (DoS)
2021-06-11 10:50:00
f5
f5
K08832573 : DHCP vulnerability CVE-2021-25217
2022-05-20 00:00:00
debiancve
debiancve
CVE-2021-25217
2021-05-26 22:15:07
fedora
fedora
[SECURITY] Fedora 33 Update: dhcp-4.4.2-9.b1.fc33
2021-06-05 01:14:52
[SECURITY] Fedora 34 Update: dhcp-4.4.2-11.b1.fc34
2021-06-02 00:57:52
archlinux
archlinux
[ASA-202106-11] dhcp: arbitrary code execution
2021-06-01 00:00:00
[ASA-202106-10] dhclient: arbitrary code execution
2021-06-01 00:00:00
ubuntucve
ubuntucve
CVE-2021-25217
2021-05-26 00:00:00
freebsd
freebsd
isc-dhcp -- remotely exploitable vulnerability
2021-05-26 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2021-0034
2021-05-27 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2021-1.0-0394
2021-05-27 00:00:00
Important Photon OS Security Update - PHSA-2021-4.0-0034
2021-05-27 00:00:00
cloudlinux
cloudlinux
Fix of CVE: CVE-2021-25217
2021-06-07 14:19:01
ubuntu
ubuntu
DHCP vulnerability
2021-05-27 00:00:00
cvelist
cvelist
alpinelinux
alpinelinux
CVE-2021-25217
2021-05-26 22:15:07
cloudfoundry
cloudfoundry
USN-4969-1: DHCP vulnerability | Cloud Foundry
2021-06-11 00:00:00
debian
debian
[SECURITY] [DLA 2674-1] isc-dhcp security update
2021-06-03 11:42:33
centos
centos
dhclient, dhcp security update
2021-06-14 18:46:22
gentoo
gentoo
ISC DHCP: Multiple Vulnerabilities
2023-05-03 00:00:00
ics
ics
Siemens SINEC INS
2022-09-15 12:00:00
CVSS2
3.3
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:A/AC:L/Au:N/C:N/I:N/A:P
CVSS3
7.4
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
AI Score
7.7
Confidence
High
EPSS
0.003
Percentile
68.3%
Related for USN-4969-1