ISC dhcp: Denial-of-Service Vulnerability

Users of ISC dhcp please be advised of a Denial-of-service vulnerability that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)

MDVSA-2010:226: [MDVSA-2010:226] dhcp Denial-of-service Issue
Problem Description:

A vulnerability was discovered and corrected in ISC dhcp:

ISC DHCP server 4.0 before 4.0.2, 4.1 before 4.1.2, and 4.2 before
4.2.0-P1 allows remote attackers to cause a denial of service (crash)
via a DHCPv6 packet containing a Relay-Forward message without an
address in the Relay-Forward link-address field (CVE-2010-3611).

The updated packages have been upgraded to 4.1.2 which is not
vulnerable to this issue.Read more at http://www.criticalwatch.com

 

Advertisements