Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2011-4868 (GCVE-0-2011-4868)
Vulnerability from cvelistv5
Published
2012-01-15 02:00
Modified
2024-08-07 00:16
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T00:16:35.122Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://kb.isc.org/article/AA-00705"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.isc.org/software/dhcp/advisories/cve-2011-4868"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://deepthought.isc.org/article/AA-00595"
},
{
"name": "GLSA-201301-06",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://security.gentoo.org/glsa/glsa-201301-06.xml"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2012-01-12T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-11-30T20:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://kb.isc.org/article/AA-00705"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.isc.org/software/dhcp/advisories/cve-2011-4868"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://deepthought.isc.org/article/AA-00595"
},
{
"name": "GLSA-201301-06",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://security.gentoo.org/glsa/glsa-201301-06.xml"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2011-4868",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://kb.isc.org/article/AA-00705",
"refsource": "CONFIRM",
"url": "https://kb.isc.org/article/AA-00705"
},
{
"name": "https://www.isc.org/software/dhcp/advisories/cve-2011-4868",
"refsource": "CONFIRM",
"url": "https://www.isc.org/software/dhcp/advisories/cve-2011-4868"
},
{
"name": "https://deepthought.isc.org/article/AA-00595",
"refsource": "CONFIRM",
"url": "https://deepthought.isc.org/article/AA-00595"
},
{
"name": "GLSA-201301-06",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-201301-06.xml"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2011-4868",
"datePublished": "2012-01-15T02:00:00",
"dateReserved": "2011-12-19T00:00:00",
"dateUpdated": "2024-08-07T00:16:35.122Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2011-4868\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2012-01-15T03:55:12.953\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.\"},{\"lang\":\"es\",\"value\":\"La funcionalidad de registro en el dhcpd de ISC DHCP anterior a v4.2.3-P2, cuando se utiliza DNS din\u00e1mico (DDNS) y direcciones IPv6, no maneja correctamente la estructura de arrendamiento (lease structure) DHCPv6, permitiendo a atacantes remotos provocar una denegaci\u00f3n de servicio (puntero a NULL y el ca\u00edda del servicio) mediante paquetes especialmente elaborados en relaci\u00f3n con una actualizaci\u00f3n lease-status.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:A/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":6.1,\"accessVector\":\"ADJACENT_NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":6.5,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-399\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:*:p1:*:*:*:*:*:*\",\"versionEndIncluding\":\"4.2.3\",\"matchCriteriaId\":\"8387F752-D920-4891-9DCB-4CCDE8461DE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"648BBC1F-1792-443F-B625-67A05004EB7E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel1:*:*:*:*:*\",\"matchCriteriaId\":\"CED58016-46F0-4665-985B-DA74FB146F7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel10:*:*:*:*:*\",\"matchCriteriaId\":\"60CF9BD0-B2CD-4D37-85AB-BEC48B574EC3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel11:*:*:*:*:*\",\"matchCriteriaId\":\"F7976068-FF49-4A34-B435-4224E34AEC7D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel12:*:*:*:*:*\",\"matchCriteriaId\":\"1509896E-865A-428F-A668-D94538EA172C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel13:*:*:*:*:*\",\"matchCriteriaId\":\"1F9DEF18-F2E7-42BB-A99F-56CB98AD292C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel14:*:*:*:*:*\",\"matchCriteriaId\":\"500BAE2D-BDE3-4960-8CA2-AC37D598F698\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel15:*:*:*:*:*\",\"matchCriteriaId\":\"18D4C846-C7B9-4371-B48E-0C69882EA702\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel16:*:*:*:*:*\",\"matchCriteriaId\":\"12482D44-06C6-45EB-83B0-559AF22A7E4B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel18:*:*:*:*:*\",\"matchCriteriaId\":\"48863BF7-1A7F-4318-BF67-302A34EB4970\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel19:*:*:*:*:*\",\"matchCriteriaId\":\"1EAE0593-DA68-4D38-A5D4-0A3F3CB7D47F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel2:*:*:*:*:*\",\"matchCriteriaId\":\"46CD08A2-BBB4-4477-AB70-22E938873BFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel20:*:*:*:*:*\",\"matchCriteriaId\":\"EF45264F-4E92-47C7-9979-2FDB069A1582\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel21:*:*:*:*:*\",\"matchCriteriaId\":\"69FB5D2E-52D4-4010-8CC5-EBC7A89D537A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel22:*:*:*:*:*\",\"matchCriteriaId\":\"ECD650FF-A75F-4E19-A4E1-5EFC937292C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel23:*:*:*:*:*\",\"matchCriteriaId\":\"1A5F1555-CE8D-481B-8F0F-EB6EC36C47F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel24:*:*:*:*:*\",\"matchCriteriaId\":\"FD9DDBA0-77D0-482D-93EE-4F65215BA1B2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel3:*:*:*:*:*\",\"matchCriteriaId\":\"1E02470D-1508-4F50-920D-6201F6DF8C3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel4:*:*:*:*:*\",\"matchCriteriaId\":\"B139A35A-D199-4891-90A9-EA8632EDF01D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel5:*:*:*:*:*\",\"matchCriteriaId\":\"511146C2-A7F4-4E43-854B-0ABF7B64449F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel6:*:*:*:*:*\",\"matchCriteriaId\":\"4B685143-F267-40A9-8D7F-CF106F4706D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel7:*:*:*:*:*\",\"matchCriteriaId\":\"605E3131-2AD4-486D-AB0E-9625A00FE13B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel8:*:*:*:*:*\",\"matchCriteriaId\":\"05B1BA61-DF1A-4817-8320-9BB7BA890356\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel9:*:*:*:*:*\",\"matchCriteriaId\":\"EE3BC91D-A46B-460E-9736-1EE8B0489B6A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB378EB8-45C6-4143-BC15-02C5417E99C8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:rc1:patchlevel1:*:*:*:*:*\",\"matchCriteriaId\":\"DD3851CF-93A4-4478-80DE-EB4FA2AD1C21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:rc10:*:*:*:*:*:*\",\"matchCriteriaId\":\"BBA95784-E478-4476-833E-89F7E1291413\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:rc11:*:*:*:*:*:*\",\"matchCriteriaId\":\"8C32A7F5-AC86-4587-9324-409242EFF21B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:rc12:*:*:*:*:*:*\",\"matchCriteriaId\":\"06EC71C2-F95C-4633-940F-D21EF03285C1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"942778E1-3FF6-4CA9-A309-0C4908FAD0D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:rc2:patchlevel1:*:*:*:*:*\",\"matchCriteriaId\":\"BAA8D5D1-A01C-4209-A399-FE33FEBAC357\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"0E01CC47-B3B4-4806-9ED3-128A7129D9EC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"5FF38786-9928-4582-AA9D-2BC7B93C1A2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"5AD60A88-B50B-49C2-B5FD-B3AA548E279F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA940163-BF8D-4120-AFC4-100AFB493247\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A19685C-C842-4B58-A2F1-3D777BF30486\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:rc8:*:*:*:*:*:*\",\"matchCriteriaId\":\"37B6EDC1-EA03-4B5A-82D7-3099F3E243A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:rc8:patchlevel1:*:*:*:*:*\",\"matchCriteriaId\":\"A17E1A4A-5EFE-4595-9E3D-1668FD16573C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0:rc9:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F6A8E0B-C61F-483C-8FF1-390FD58F80D9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD47856E-E679-4F5D-9280-78E0E59AFD0A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.1:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E94449B-6FB0-4E4D-9D92-144A1C474761\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.1:rc10:*:*:*:*:*:*\",\"matchCriteriaId\":\"6824B249-D222-4F29-8C29-E92071F12621\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.1:rc11:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F7A3F32-C297-4331-9B8D-1CF8F3D32315\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.1:rc12:*:*:*:*:*:*\",\"matchCriteriaId\":\"B4959ABA-9F2E-4003-9566-DBE3177AE233\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.1:rc13:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CE2A3CA-EFB6-4547-BED8-CAC39156F10B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.1:rc14:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DE205EE-F708-4E4A-A861-EBF6D3C062F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.1:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD8EBBF0-A61B-4FF0-B055-9BA2A21617A4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.1:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"06E8A13B-EC20-43C3-8141-816BADC705BC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.1:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"2BE83F2A-FBE2-4CED-B60E-F1FF5AC446B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.1:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"B3141202-993D-4E80-9EAD-ACA6C1343D6E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.1:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E0768D1-37D3-4C17-A3A9-94EA237392AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.1:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"F167B922-DD9E-4DD1-BB8F-B232711BACCD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.1:rc8:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E23602E-FFA1-49E2-BF4C-BC5D074517B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.1:rc9:*:*:*:*:*:*\",\"matchCriteriaId\":\"8DA200FE-D261-4532-AC63-1208611AFE46\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"91A77DE4-E547-46AB-86C6-360D387953F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.2:b1:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A3649A4-BA40-4D8A-AB7C-AE1584459DFA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.2:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"9ADC8A14-E847-4CC5-8FA5-522883DE324F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.2:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"CAA0C26C-9B0A-4ACB-9BD7-413F94948545\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.2:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DC6FA47-1F41-465D-8EAD-8116643ADAEF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88D957D5-8896-49FF-821E-8B5096B1F986\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.3:b1:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D71C1AA-E5F7-454B-9267-FE23E1C2AB31\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.3:b2:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D521DF6-AED8-40FA-B183-D469100B8B7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.3:b3:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD90F626-AC37-491A-A59D-11307D73E27A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1269D9FF-C497-4FA5-90DA-302A9FC1EB75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.4:b1:*:*:*:*:*:*\",\"matchCriteriaId\":\"34D8DF2C-387B-4880-9832-15583272E151\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.4:b2:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD78CE26-475D-4D8B-8625-CAE850F6E876\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.4:b3:*:*:*:*:*:*\",\"matchCriteriaId\":\"9338F9AA-41F0-470E-BB49-C1A395376DF0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.4:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"6297233D-6C25-4A10-8F0A-79A8452ABAD3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"929CEDEC-6D65-4E1C-97DA-B6BFF3BFEFA9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.5:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"B9D5A562-AEB5-41D8-9137-65B3100B1F21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.0.6:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"5AD8F74D-3F4B-4E25-92C9-D20C63B4B77E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C921FD4C-E274-40C9-AFC8-CB0861889E15\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.1.0:a1:*:*:*:*:*:*\",\"matchCriteriaId\":\"7528512B-66EC-4B2C-9158-34199C4A5FCE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.1.0:a2:*:*:*:*:*:*\",\"matchCriteriaId\":\"106F8860-B068-4B68-8734-206BFD401C3F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.1.0:a3:*:*:*:*:*:*\",\"matchCriteriaId\":\"240D0880-DC35-41A6-B4F2-F9B73DF4AF59\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.1.0:b1:*:*:*:*:*:*\",\"matchCriteriaId\":\"6643B661-0253-4036-88D7-AF70B610B627\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:3.1.0:b2:*:*:*:*:*:*\",\"matchCriteriaId\":\"EFD04E6D-B418-4BCB-A3A1-CDFDEC271497\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79DA60EA-F94F-4890-BF9E-E142BC219118\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.0.0:a1:*:*:*:*:*:*\",\"matchCriteriaId\":\"50BE7B3C-59D7-4FA7-A1A2-40B12EBA3832\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.0.0:a2:*:*:*:*:*:*\",\"matchCriteriaId\":\"3F4BA541-795B-4EC2-AF47-82F331F79A1C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.0.0:a3:*:*:*:*:*:*\",\"matchCriteriaId\":\"B89FC09F-EC04-4B40-A797-10A26D15F6D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.0.0:b1:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E510E61-0842-45EC-92E2-BE4BD584887A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.0.0:b2:*:*:*:*:*:*\",\"matchCriteriaId\":\"E76F0561-864D-4091-8E4F-6C2DA1B77E29\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.0.0:b3:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB54A820-124E-4106-A55D-19947F32852E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"41B46352-9D4D-4C74-876F-3685016025CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.1.0:a1:*:*:*:*:*:*\",\"matchCriteriaId\":\"40C764F4-8FAD-477E-92E5-79D234673478\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.1.0:a2:*:*:*:*:*:*\",\"matchCriteriaId\":\"36045DDB-48C6-48CA-AAAF-A3487EF7A537\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.1.0:b1:*:*:*:*:*:*\",\"matchCriteriaId\":\"ECA81B95-97B7-4A56-A448-6E5DB6FA5F76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7AFCB588-F1C0-4276-993C-CB0FA2BE21F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.2.0:a1:*:*:*:*:*:*\",\"matchCriteriaId\":\"56113AB6-8295-4EB7-A003-79049FBB8B4C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.2.0:a2:*:*:*:*:*:*\",\"matchCriteriaId\":\"362DA97E-B940-4649-803F-26D8C1D16DA5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.2.0:b1:*:*:*:*:*:*\",\"matchCriteriaId\":\"950A6BA0-C348-4B89-8C18-F2AFA467649F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.2.0:b2:*:*:*:*:*:*\",\"matchCriteriaId\":\"9088D042-F104-4F31-AEBB-75F5A0F03AE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.2.0:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"1C49DF07-9612-43C7-9771-B76487B4A9CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE3EE047-6A23-4BFF-9576-9E4CA63BA153\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.2.1:b1:*:*:*:*:*:*\",\"matchCriteriaId\":\"C0F06FC0-6477-4589-B9CB-24B1F893EF09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.2.1:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"6CCA07EB-B0CB-40EE-B62E-DB4C408717B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1707B3D-29F7-46C6-8A0A-D776E062FD4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.2.2:b1:*:*:*:*:*:*\",\"matchCriteriaId\":\"53551545-041A-456F-BC81-E05A6B3CB198\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.2.2:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F3DBB40-638E-4A4B-99B4-534D2564E146\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:dhcp:4.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"493B7D92-18A4-4221-AEDD-917404C47E6D\"}]}]}],\"references\":[{\"url\":\"http://security.gentoo.org/glsa/glsa-201301-06.xml\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://deepthought.isc.org/article/AA-00595\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://kb.isc.org/article/AA-00705\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.isc.org/software/dhcp/advisories/cve-2011-4868\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://security.gentoo.org/glsa/glsa-201301-06.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://deepthought.isc.org/article/AA-00595\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://kb.isc.org/article/AA-00705\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.isc.org/software/dhcp/advisories/cve-2011-4868\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
opensuse-su-2024:10358-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
dhcp-4.3.3.P1-3.1 on GA media
Notes
Title of the patch
dhcp-4.3.3.P1-3.1 on GA media
Description of the patch
These are all security issues fixed in the dhcp-4.3.3.P1-3.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10358
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "dhcp-4.3.3.P1-3.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the dhcp-4.3.3.P1-3.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10358",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10358-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-1892 page",
"url": "https://www.suse.com/security/cve/CVE-2009-1892/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-2156 page",
"url": "https://www.suse.com/security/cve/CVE-2010-2156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-3611 page",
"url": "https://www.suse.com/security/cve/CVE-2010-3611/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-3616 page",
"url": "https://www.suse.com/security/cve/CVE-2010-3616/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-0413 page",
"url": "https://www.suse.com/security/cve/CVE-2011-0413/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-0997 page",
"url": "https://www.suse.com/security/cve/CVE-2011-0997/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-2748 page",
"url": "https://www.suse.com/security/cve/CVE-2011-2748/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-2749 page",
"url": "https://www.suse.com/security/cve/CVE-2011-2749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-4539 page",
"url": "https://www.suse.com/security/cve/CVE-2011-4539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-4868 page",
"url": "https://www.suse.com/security/cve/CVE-2011-4868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-3570 page",
"url": "https://www.suse.com/security/cve/CVE-2012-3570/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-3571 page",
"url": "https://www.suse.com/security/cve/CVE-2012-3571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-3954 page",
"url": "https://www.suse.com/security/cve/CVE-2012-3954/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-3955 page",
"url": "https://www.suse.com/security/cve/CVE-2012-3955/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-2266 page",
"url": "https://www.suse.com/security/cve/CVE-2013-2266/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8605 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8605/"
}
],
"title": "dhcp-4.3.3.P1-3.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10358-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "dhcp-4.3.3.P1-3.1.aarch64",
"product": {
"name": "dhcp-4.3.3.P1-3.1.aarch64",
"product_id": "dhcp-4.3.3.P1-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "dhcp-client-4.3.3.P1-3.1.aarch64",
"product": {
"name": "dhcp-client-4.3.3.P1-3.1.aarch64",
"product_id": "dhcp-client-4.3.3.P1-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "dhcp-devel-4.3.3.P1-3.1.aarch64",
"product": {
"name": "dhcp-devel-4.3.3.P1-3.1.aarch64",
"product_id": "dhcp-devel-4.3.3.P1-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "dhcp-doc-4.3.3.P1-3.1.aarch64",
"product": {
"name": "dhcp-doc-4.3.3.P1-3.1.aarch64",
"product_id": "dhcp-doc-4.3.3.P1-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "dhcp-relay-4.3.3.P1-3.1.aarch64",
"product": {
"name": "dhcp-relay-4.3.3.P1-3.1.aarch64",
"product_id": "dhcp-relay-4.3.3.P1-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "dhcp-server-4.3.3.P1-3.1.aarch64",
"product": {
"name": "dhcp-server-4.3.3.P1-3.1.aarch64",
"product_id": "dhcp-server-4.3.3.P1-3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "dhcp-4.3.3.P1-3.1.ppc64le",
"product": {
"name": "dhcp-4.3.3.P1-3.1.ppc64le",
"product_id": "dhcp-4.3.3.P1-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dhcp-client-4.3.3.P1-3.1.ppc64le",
"product": {
"name": "dhcp-client-4.3.3.P1-3.1.ppc64le",
"product_id": "dhcp-client-4.3.3.P1-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dhcp-devel-4.3.3.P1-3.1.ppc64le",
"product": {
"name": "dhcp-devel-4.3.3.P1-3.1.ppc64le",
"product_id": "dhcp-devel-4.3.3.P1-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dhcp-doc-4.3.3.P1-3.1.ppc64le",
"product": {
"name": "dhcp-doc-4.3.3.P1-3.1.ppc64le",
"product_id": "dhcp-doc-4.3.3.P1-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dhcp-relay-4.3.3.P1-3.1.ppc64le",
"product": {
"name": "dhcp-relay-4.3.3.P1-3.1.ppc64le",
"product_id": "dhcp-relay-4.3.3.P1-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dhcp-server-4.3.3.P1-3.1.ppc64le",
"product": {
"name": "dhcp-server-4.3.3.P1-3.1.ppc64le",
"product_id": "dhcp-server-4.3.3.P1-3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "dhcp-4.3.3.P1-3.1.s390x",
"product": {
"name": "dhcp-4.3.3.P1-3.1.s390x",
"product_id": "dhcp-4.3.3.P1-3.1.s390x"
}
},
{
"category": "product_version",
"name": "dhcp-client-4.3.3.P1-3.1.s390x",
"product": {
"name": "dhcp-client-4.3.3.P1-3.1.s390x",
"product_id": "dhcp-client-4.3.3.P1-3.1.s390x"
}
},
{
"category": "product_version",
"name": "dhcp-devel-4.3.3.P1-3.1.s390x",
"product": {
"name": "dhcp-devel-4.3.3.P1-3.1.s390x",
"product_id": "dhcp-devel-4.3.3.P1-3.1.s390x"
}
},
{
"category": "product_version",
"name": "dhcp-doc-4.3.3.P1-3.1.s390x",
"product": {
"name": "dhcp-doc-4.3.3.P1-3.1.s390x",
"product_id": "dhcp-doc-4.3.3.P1-3.1.s390x"
}
},
{
"category": "product_version",
"name": "dhcp-relay-4.3.3.P1-3.1.s390x",
"product": {
"name": "dhcp-relay-4.3.3.P1-3.1.s390x",
"product_id": "dhcp-relay-4.3.3.P1-3.1.s390x"
}
},
{
"category": "product_version",
"name": "dhcp-server-4.3.3.P1-3.1.s390x",
"product": {
"name": "dhcp-server-4.3.3.P1-3.1.s390x",
"product_id": "dhcp-server-4.3.3.P1-3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dhcp-4.3.3.P1-3.1.x86_64",
"product": {
"name": "dhcp-4.3.3.P1-3.1.x86_64",
"product_id": "dhcp-4.3.3.P1-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "dhcp-client-4.3.3.P1-3.1.x86_64",
"product": {
"name": "dhcp-client-4.3.3.P1-3.1.x86_64",
"product_id": "dhcp-client-4.3.3.P1-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "dhcp-devel-4.3.3.P1-3.1.x86_64",
"product": {
"name": "dhcp-devel-4.3.3.P1-3.1.x86_64",
"product_id": "dhcp-devel-4.3.3.P1-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "dhcp-doc-4.3.3.P1-3.1.x86_64",
"product": {
"name": "dhcp-doc-4.3.3.P1-3.1.x86_64",
"product_id": "dhcp-doc-4.3.3.P1-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "dhcp-relay-4.3.3.P1-3.1.x86_64",
"product": {
"name": "dhcp-relay-4.3.3.P1-3.1.x86_64",
"product_id": "dhcp-relay-4.3.3.P1-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "dhcp-server-4.3.3.P1-3.1.x86_64",
"product": {
"name": "dhcp-server-4.3.3.P1-3.1.x86_64",
"product_id": "dhcp-server-4.3.3.P1-3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-4.3.3.P1-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64"
},
"product_reference": "dhcp-4.3.3.P1-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-4.3.3.P1-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le"
},
"product_reference": "dhcp-4.3.3.P1-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-4.3.3.P1-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x"
},
"product_reference": "dhcp-4.3.3.P1-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-4.3.3.P1-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64"
},
"product_reference": "dhcp-4.3.3.P1-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-client-4.3.3.P1-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64"
},
"product_reference": "dhcp-client-4.3.3.P1-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-client-4.3.3.P1-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le"
},
"product_reference": "dhcp-client-4.3.3.P1-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-client-4.3.3.P1-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x"
},
"product_reference": "dhcp-client-4.3.3.P1-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-client-4.3.3.P1-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64"
},
"product_reference": "dhcp-client-4.3.3.P1-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-devel-4.3.3.P1-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64"
},
"product_reference": "dhcp-devel-4.3.3.P1-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-devel-4.3.3.P1-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le"
},
"product_reference": "dhcp-devel-4.3.3.P1-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-devel-4.3.3.P1-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x"
},
"product_reference": "dhcp-devel-4.3.3.P1-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-devel-4.3.3.P1-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64"
},
"product_reference": "dhcp-devel-4.3.3.P1-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-doc-4.3.3.P1-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64"
},
"product_reference": "dhcp-doc-4.3.3.P1-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-doc-4.3.3.P1-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le"
},
"product_reference": "dhcp-doc-4.3.3.P1-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-doc-4.3.3.P1-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x"
},
"product_reference": "dhcp-doc-4.3.3.P1-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-doc-4.3.3.P1-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64"
},
"product_reference": "dhcp-doc-4.3.3.P1-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-relay-4.3.3.P1-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64"
},
"product_reference": "dhcp-relay-4.3.3.P1-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-relay-4.3.3.P1-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le"
},
"product_reference": "dhcp-relay-4.3.3.P1-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-relay-4.3.3.P1-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x"
},
"product_reference": "dhcp-relay-4.3.3.P1-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-relay-4.3.3.P1-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64"
},
"product_reference": "dhcp-relay-4.3.3.P1-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-server-4.3.3.P1-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64"
},
"product_reference": "dhcp-server-4.3.3.P1-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-server-4.3.3.P1-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le"
},
"product_reference": "dhcp-server-4.3.3.P1-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-server-4.3.3.P1-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x"
},
"product_reference": "dhcp-server-4.3.3.P1-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dhcp-server-4.3.3.P1-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
},
"product_reference": "dhcp-server-4.3.3.P1-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2009-1892",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-1892"
}
],
"notes": [
{
"category": "general",
"text": "dhcpd in ISC DHCP 3.0.4 and 3.1.1, when the dhcp-client-identifier and hardware ethernet configuration settings are both used, allows remote attackers to cause a denial of service (daemon crash) via unspecified requests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-1892",
"url": "https://www.suse.com/security/cve/CVE-2009-1892"
},
{
"category": "external",
"summary": "SUSE Bug 519413 for CVE-2009-1892",
"url": "https://bugzilla.suse.com/519413"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-1892"
},
{
"cve": "CVE-2010-2156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-2156"
}
],
"notes": [
{
"category": "general",
"text": "ISC DHCP 4.1 before 4.1.1-P1 and 4.0 before 4.0.2-P1 allows remote attackers to cause a denial of service (server exit) via a zero-length client ID.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-2156",
"url": "https://www.suse.com/security/cve/CVE-2010-2156"
},
{
"category": "external",
"summary": "SUSE Bug 612546 for CVE-2010-2156",
"url": "https://bugzilla.suse.com/612546"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-2156"
},
{
"cve": "CVE-2010-3611",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-3611"
}
],
"notes": [
{
"category": "general",
"text": "ISC DHCP server 4.0 before 4.0.2, 4.1 before 4.1.2, and 4.2 before 4.2.0-P1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a DHCPv6 packet containing a Relay-Forward message without an address in the Relay-Forward link-address field.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-3611",
"url": "https://www.suse.com/security/cve/CVE-2010-3611"
},
{
"category": "external",
"summary": "SUSE Bug 650902 for CVE-2010-3611",
"url": "https://bugzilla.suse.com/650902"
},
{
"category": "external",
"summary": "SUSE Bug 667655 for CVE-2010-3611",
"url": "https://bugzilla.suse.com/667655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-3611"
},
{
"cve": "CVE-2010-3616",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-3616"
}
],
"notes": [
{
"category": "general",
"text": "ISC DHCP server 4.2 before 4.2.0-P2, when configured to use failover partnerships, allows remote attackers to cause a denial of service (communications-interrupted state and DHCP client service loss) by connecting to a port that is only intended for a failover peer, as demonstrated by a Nagios check_tcp process check to TCP port 520.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-3616",
"url": "https://www.suse.com/security/cve/CVE-2010-3616"
},
{
"category": "external",
"summary": "SUSE Bug 659059 for CVE-2010-3616",
"url": "https://bugzilla.suse.com/659059"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-3616"
},
{
"cve": "CVE-2011-0413",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-0413"
}
],
"notes": [
{
"category": "general",
"text": "The DHCPv6 server in ISC DHCP 4.0.x and 4.1.x before 4.1.2-P1, 4.0-ESV and 4.1-ESV before 4.1-ESV-R1, and 4.2.x before 4.2.1b1 allows remote attackers to cause a denial of service (assertion failure and daemon crash) by sending a message over IPv6 for a declined and abandoned address.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-0413",
"url": "https://www.suse.com/security/cve/CVE-2011-0413"
},
{
"category": "external",
"summary": "SUSE Bug 667655 for CVE-2011-0413",
"url": "https://bugzilla.suse.com/667655"
},
{
"category": "external",
"summary": "SUSE Bug 680298 for CVE-2011-0413",
"url": "https://bugzilla.suse.com/680298"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2011-0413"
},
{
"cve": "CVE-2011-0997",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-0997"
}
],
"notes": [
{
"category": "general",
"text": "dhclient in ISC DHCP 3.0.x through 4.2.x before 4.2.1-P1, 3.1-ESV before 3.1-ESV-R1, and 4.1-ESV before 4.1-ESV-R2 allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message, as demonstrated by a hostname that is provided to dhclient-script.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-0997",
"url": "https://www.suse.com/security/cve/CVE-2011-0997"
},
{
"category": "external",
"summary": "SUSE Bug 675052 for CVE-2011-0997",
"url": "https://bugzilla.suse.com/675052"
},
{
"category": "external",
"summary": "SUSE Bug 689182 for CVE-2011-0997",
"url": "https://bugzilla.suse.com/689182"
},
{
"category": "external",
"summary": "SUSE Bug 708527 for CVE-2011-0997",
"url": "https://bugzilla.suse.com/708527"
},
{
"category": "external",
"summary": "SUSE Bug 715172 for CVE-2011-0997",
"url": "https://bugzilla.suse.com/715172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2011-0997"
},
{
"cve": "CVE-2011-2748",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-2748"
}
],
"notes": [
{
"category": "general",
"text": "The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted DHCP packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-2748",
"url": "https://www.suse.com/security/cve/CVE-2011-2748"
},
{
"category": "external",
"summary": "SUSE Bug 712653 for CVE-2011-2748",
"url": "https://bugzilla.suse.com/712653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2011-2748"
},
{
"cve": "CVE-2011-2749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-2749"
}
],
"notes": [
{
"category": "general",
"text": "The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted BOOTP packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-2749",
"url": "https://www.suse.com/security/cve/CVE-2011-2749"
},
{
"category": "external",
"summary": "SUSE Bug 712653 for CVE-2011-2749",
"url": "https://bugzilla.suse.com/712653"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2011-2749"
},
{
"cve": "CVE-2011-4539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-4539"
}
],
"notes": [
{
"category": "general",
"text": "dhcpd in ISC DHCP 4.x before 4.2.3-P1 and 4.1-ESV before 4.1-ESV-R4 does not properly handle regular expressions in dhcpd.conf, which allows remote attackers to cause a denial of service (daemon crash) via a crafted request packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-4539",
"url": "https://www.suse.com/security/cve/CVE-2011-4539"
},
{
"category": "external",
"summary": "SUSE Bug 735610 for CVE-2011-4539",
"url": "https://bugzilla.suse.com/735610"
},
{
"category": "external",
"summary": "SUSE Bug 741239 for CVE-2011-4539",
"url": "https://bugzilla.suse.com/741239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-4539"
},
{
"cve": "CVE-2011-4868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-4868"
}
],
"notes": [
{
"category": "general",
"text": "The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-4868",
"url": "https://www.suse.com/security/cve/CVE-2011-4868"
},
{
"category": "external",
"summary": "SUSE Bug 741239 for CVE-2011-4868",
"url": "https://bugzilla.suse.com/741239"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-4868"
},
{
"cve": "CVE-2012-3570",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-3570"
}
],
"notes": [
{
"category": "general",
"text": "Buffer overflow in ISC DHCP 4.2.x before 4.2.4-P1, when DHCPv6 mode is enabled, allows remote attackers to cause a denial of service (segmentation fault and daemon exit) via a crafted client identifier parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-3570",
"url": "https://www.suse.com/security/cve/CVE-2012-3570"
},
{
"category": "external",
"summary": "SUSE Bug 772924 for CVE-2012-3570",
"url": "https://bugzilla.suse.com/772924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-3570"
},
{
"cve": "CVE-2012-3571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-3571"
}
],
"notes": [
{
"category": "general",
"text": "ISC DHCP 4.1.2 through 4.2.4 and 4.1-ESV before 4.1-ESV-R6 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a malformed client identifier.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-3571",
"url": "https://www.suse.com/security/cve/CVE-2012-3571"
},
{
"category": "external",
"summary": "SUSE Bug 772924 for CVE-2012-3571",
"url": "https://bugzilla.suse.com/772924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-3571"
},
{
"cve": "CVE-2012-3954",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-3954"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory leaks in ISC DHCP 4.1.x and 4.2.x before 4.2.4-P1 and 4.1-ESV before 4.1-ESV-R6 allow remote attackers to cause a denial of service (memory consumption) by sending many requests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-3954",
"url": "https://www.suse.com/security/cve/CVE-2012-3954"
},
{
"category": "external",
"summary": "SUSE Bug 772924 for CVE-2012-3954",
"url": "https://bugzilla.suse.com/772924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-3954"
},
{
"cve": "CVE-2012-3955",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-3955"
}
],
"notes": [
{
"category": "general",
"text": "ISC DHCP 4.1.x before 4.1-ESV-R7 and 4.2.x before 4.2.4-P2 allows remote attackers to cause a denial of service (daemon crash) in opportunistic circumstances by establishing an IPv6 lease in an environment where the lease expiration time is later reduced.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-3955",
"url": "https://www.suse.com/security/cve/CVE-2012-3955"
},
{
"category": "external",
"summary": "SUSE Bug 780167 for CVE-2012-3955",
"url": "https://bugzilla.suse.com/780167"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2012-3955"
},
{
"cve": "CVE-2013-2266",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-2266"
}
],
"notes": [
{
"category": "general",
"text": "libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service (memory consumption) via a crafted regular expression, as demonstrated by a memory-exhaustion attack against a machine running a named process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-2266",
"url": "https://www.suse.com/security/cve/CVE-2013-2266"
},
{
"category": "external",
"summary": "SUSE Bug 811876 for CVE-2013-2266",
"url": "https://bugzilla.suse.com/811876"
},
{
"category": "external",
"summary": "SUSE Bug 811934 for CVE-2013-2266",
"url": "https://bugzilla.suse.com/811934"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2013-2266"
},
{
"cve": "CVE-2015-8605",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8605"
}
],
"notes": [
{
"category": "general",
"text": "ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service (application crash) via an invalid length field in a UDP IPv4 packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8605",
"url": "https://www.suse.com/security/cve/CVE-2015-8605"
},
{
"category": "external",
"summary": "SUSE Bug 961305 for CVE-2015-8605",
"url": "https://bugzilla.suse.com/961305"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-client-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-devel-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-doc-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-relay-4.3.3.P1-3.1.x86_64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.aarch64",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.ppc64le",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.s390x",
"openSUSE Tumbleweed:dhcp-server-4.3.3.P1-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-8605"
}
]
}
fkie_cve-2011-4868
Vulnerability from fkie_nvd
Published
2012-01-15 03:55
Modified
2025-04-11 00:51
Severity ?
Summary
The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | http://security.gentoo.org/glsa/glsa-201301-06.xml | ||
| cve@mitre.org | https://deepthought.isc.org/article/AA-00595 | ||
| cve@mitre.org | https://kb.isc.org/article/AA-00705 | ||
| cve@mitre.org | https://www.isc.org/software/dhcp/advisories/cve-2011-4868 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://security.gentoo.org/glsa/glsa-201301-06.xml | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://deepthought.isc.org/article/AA-00595 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://kb.isc.org/article/AA-00705 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.isc.org/software/dhcp/advisories/cve-2011-4868 | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| isc | dhcp | * | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0 | |
| isc | dhcp | 3.0.1 | |
| isc | dhcp | 3.0.1 | |
| isc | dhcp | 3.0.1 | |
| isc | dhcp | 3.0.1 | |
| isc | dhcp | 3.0.1 | |
| isc | dhcp | 3.0.1 | |
| isc | dhcp | 3.0.1 | |
| isc | dhcp | 3.0.1 | |
| isc | dhcp | 3.0.1 | |
| isc | dhcp | 3.0.1 | |
| isc | dhcp | 3.0.1 | |
| isc | dhcp | 3.0.1 | |
| isc | dhcp | 3.0.1 | |
| isc | dhcp | 3.0.1 | |
| isc | dhcp | 3.0.1 | |
| isc | dhcp | 3.0.2 | |
| isc | dhcp | 3.0.2 | |
| isc | dhcp | 3.0.2 | |
| isc | dhcp | 3.0.2 | |
| isc | dhcp | 3.0.2 | |
| isc | dhcp | 3.0.3 | |
| isc | dhcp | 3.0.3 | |
| isc | dhcp | 3.0.3 | |
| isc | dhcp | 3.0.3 | |
| isc | dhcp | 3.0.4 | |
| isc | dhcp | 3.0.4 | |
| isc | dhcp | 3.0.4 | |
| isc | dhcp | 3.0.4 | |
| isc | dhcp | 3.0.4 | |
| isc | dhcp | 3.0.5 | |
| isc | dhcp | 3.0.5 | |
| isc | dhcp | 3.0.6 | |
| isc | dhcp | 3.1.0 | |
| isc | dhcp | 3.1.0 | |
| isc | dhcp | 3.1.0 | |
| isc | dhcp | 3.1.0 | |
| isc | dhcp | 3.1.0 | |
| isc | dhcp | 3.1.0 | |
| isc | dhcp | 4.0.0 | |
| isc | dhcp | 4.0.0 | |
| isc | dhcp | 4.0.0 | |
| isc | dhcp | 4.0.0 | |
| isc | dhcp | 4.0.0 | |
| isc | dhcp | 4.0.0 | |
| isc | dhcp | 4.0.0 | |
| isc | dhcp | 4.1.0 | |
| isc | dhcp | 4.1.0 | |
| isc | dhcp | 4.1.0 | |
| isc | dhcp | 4.1.0 | |
| isc | dhcp | 4.2.0 | |
| isc | dhcp | 4.2.0 | |
| isc | dhcp | 4.2.0 | |
| isc | dhcp | 4.2.0 | |
| isc | dhcp | 4.2.0 | |
| isc | dhcp | 4.2.0 | |
| isc | dhcp | 4.2.1 | |
| isc | dhcp | 4.2.1 | |
| isc | dhcp | 4.2.1 | |
| isc | dhcp | 4.2.2 | |
| isc | dhcp | 4.2.2 | |
| isc | dhcp | 4.2.2 | |
| isc | dhcp | 4.2.3 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:isc:dhcp:*:p1:*:*:*:*:*:*",
"matchCriteriaId": "8387F752-D920-4891-9DCB-4CCDE8461DE5",
"versionEndIncluding": "4.2.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "648BBC1F-1792-443F-B625-67A05004EB7E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel1:*:*:*:*:*",
"matchCriteriaId": "CED58016-46F0-4665-985B-DA74FB146F7F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel10:*:*:*:*:*",
"matchCriteriaId": "60CF9BD0-B2CD-4D37-85AB-BEC48B574EC3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel11:*:*:*:*:*",
"matchCriteriaId": "F7976068-FF49-4A34-B435-4224E34AEC7D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel12:*:*:*:*:*",
"matchCriteriaId": "1509896E-865A-428F-A668-D94538EA172C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel13:*:*:*:*:*",
"matchCriteriaId": "1F9DEF18-F2E7-42BB-A99F-56CB98AD292C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel14:*:*:*:*:*",
"matchCriteriaId": "500BAE2D-BDE3-4960-8CA2-AC37D598F698",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel15:*:*:*:*:*",
"matchCriteriaId": "18D4C846-C7B9-4371-B48E-0C69882EA702",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel16:*:*:*:*:*",
"matchCriteriaId": "12482D44-06C6-45EB-83B0-559AF22A7E4B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel18:*:*:*:*:*",
"matchCriteriaId": "48863BF7-1A7F-4318-BF67-302A34EB4970",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel19:*:*:*:*:*",
"matchCriteriaId": "1EAE0593-DA68-4D38-A5D4-0A3F3CB7D47F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel2:*:*:*:*:*",
"matchCriteriaId": "46CD08A2-BBB4-4477-AB70-22E938873BFD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel20:*:*:*:*:*",
"matchCriteriaId": "EF45264F-4E92-47C7-9979-2FDB069A1582",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel21:*:*:*:*:*",
"matchCriteriaId": "69FB5D2E-52D4-4010-8CC5-EBC7A89D537A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel22:*:*:*:*:*",
"matchCriteriaId": "ECD650FF-A75F-4E19-A4E1-5EFC937292C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel23:*:*:*:*:*",
"matchCriteriaId": "1A5F1555-CE8D-481B-8F0F-EB6EC36C47F4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel24:*:*:*:*:*",
"matchCriteriaId": "FD9DDBA0-77D0-482D-93EE-4F65215BA1B2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel3:*:*:*:*:*",
"matchCriteriaId": "1E02470D-1508-4F50-920D-6201F6DF8C3A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel4:*:*:*:*:*",
"matchCriteriaId": "B139A35A-D199-4891-90A9-EA8632EDF01D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel5:*:*:*:*:*",
"matchCriteriaId": "511146C2-A7F4-4E43-854B-0ABF7B64449F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel6:*:*:*:*:*",
"matchCriteriaId": "4B685143-F267-40A9-8D7F-CF106F4706D6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel7:*:*:*:*:*",
"matchCriteriaId": "605E3131-2AD4-486D-AB0E-9625A00FE13B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel8:*:*:*:*:*",
"matchCriteriaId": "05B1BA61-DF1A-4817-8320-9BB7BA890356",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel9:*:*:*:*:*",
"matchCriteriaId": "EE3BC91D-A46B-460E-9736-1EE8B0489B6A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:rc1:*:*:*:*:*:*",
"matchCriteriaId": "CB378EB8-45C6-4143-BC15-02C5417E99C8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:rc1:patchlevel1:*:*:*:*:*",
"matchCriteriaId": "DD3851CF-93A4-4478-80DE-EB4FA2AD1C21",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:rc10:*:*:*:*:*:*",
"matchCriteriaId": "BBA95784-E478-4476-833E-89F7E1291413",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:rc11:*:*:*:*:*:*",
"matchCriteriaId": "8C32A7F5-AC86-4587-9324-409242EFF21B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:rc12:*:*:*:*:*:*",
"matchCriteriaId": "06EC71C2-F95C-4633-940F-D21EF03285C1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:rc2:*:*:*:*:*:*",
"matchCriteriaId": "942778E1-3FF6-4CA9-A309-0C4908FAD0D8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:rc2:patchlevel1:*:*:*:*:*",
"matchCriteriaId": "BAA8D5D1-A01C-4209-A399-FE33FEBAC357",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:rc3:*:*:*:*:*:*",
"matchCriteriaId": "0E01CC47-B3B4-4806-9ED3-128A7129D9EC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:rc4:*:*:*:*:*:*",
"matchCriteriaId": "5FF38786-9928-4582-AA9D-2BC7B93C1A2F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:rc5:*:*:*:*:*:*",
"matchCriteriaId": "5AD60A88-B50B-49C2-B5FD-B3AA548E279F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:rc6:*:*:*:*:*:*",
"matchCriteriaId": "BA940163-BF8D-4120-AFC4-100AFB493247",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:rc7:*:*:*:*:*:*",
"matchCriteriaId": "4A19685C-C842-4B58-A2F1-3D777BF30486",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:rc8:*:*:*:*:*:*",
"matchCriteriaId": "37B6EDC1-EA03-4B5A-82D7-3099F3E243A9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:rc8:patchlevel1:*:*:*:*:*",
"matchCriteriaId": "A17E1A4A-5EFE-4595-9E3D-1668FD16573C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0:rc9:*:*:*:*:*:*",
"matchCriteriaId": "7F6A8E0B-C61F-483C-8FF1-390FD58F80D9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "FD47856E-E679-4F5D-9280-78E0E59AFD0A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.1:rc1:*:*:*:*:*:*",
"matchCriteriaId": "1E94449B-6FB0-4E4D-9D92-144A1C474761",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.1:rc10:*:*:*:*:*:*",
"matchCriteriaId": "6824B249-D222-4F29-8C29-E92071F12621",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.1:rc11:*:*:*:*:*:*",
"matchCriteriaId": "2F7A3F32-C297-4331-9B8D-1CF8F3D32315",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.1:rc12:*:*:*:*:*:*",
"matchCriteriaId": "B4959ABA-9F2E-4003-9566-DBE3177AE233",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.1:rc13:*:*:*:*:*:*",
"matchCriteriaId": "0CE2A3CA-EFB6-4547-BED8-CAC39156F10B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.1:rc14:*:*:*:*:*:*",
"matchCriteriaId": "5DE205EE-F708-4E4A-A861-EBF6D3C062F7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.1:rc2:*:*:*:*:*:*",
"matchCriteriaId": "BD8EBBF0-A61B-4FF0-B055-9BA2A21617A4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.1:rc3:*:*:*:*:*:*",
"matchCriteriaId": "06E8A13B-EC20-43C3-8141-816BADC705BC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.1:rc4:*:*:*:*:*:*",
"matchCriteriaId": "2BE83F2A-FBE2-4CED-B60E-F1FF5AC446B0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.1:rc5:*:*:*:*:*:*",
"matchCriteriaId": "B3141202-993D-4E80-9EAD-ACA6C1343D6E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.1:rc6:*:*:*:*:*:*",
"matchCriteriaId": "6E0768D1-37D3-4C17-A3A9-94EA237392AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.1:rc7:*:*:*:*:*:*",
"matchCriteriaId": "F167B922-DD9E-4DD1-BB8F-B232711BACCD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.1:rc8:*:*:*:*:*:*",
"matchCriteriaId": "4E23602E-FFA1-49E2-BF4C-BC5D074517B4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.1:rc9:*:*:*:*:*:*",
"matchCriteriaId": "8DA200FE-D261-4532-AC63-1208611AFE46",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "91A77DE4-E547-46AB-86C6-360D387953F1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.2:b1:*:*:*:*:*:*",
"matchCriteriaId": "0A3649A4-BA40-4D8A-AB7C-AE1584459DFA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.2:rc1:*:*:*:*:*:*",
"matchCriteriaId": "9ADC8A14-E847-4CC5-8FA5-522883DE324F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.2:rc2:*:*:*:*:*:*",
"matchCriteriaId": "CAA0C26C-9B0A-4ACB-9BD7-413F94948545",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.2:rc3:*:*:*:*:*:*",
"matchCriteriaId": "2DC6FA47-1F41-465D-8EAD-8116643ADAEF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "88D957D5-8896-49FF-821E-8B5096B1F986",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.3:b1:*:*:*:*:*:*",
"matchCriteriaId": "5D71C1AA-E5F7-454B-9267-FE23E1C2AB31",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.3:b2:*:*:*:*:*:*",
"matchCriteriaId": "6D521DF6-AED8-40FA-B183-D469100B8B7F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.3:b3:*:*:*:*:*:*",
"matchCriteriaId": "BD90F626-AC37-491A-A59D-11307D73E27A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "1269D9FF-C497-4FA5-90DA-302A9FC1EB75",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.4:b1:*:*:*:*:*:*",
"matchCriteriaId": "34D8DF2C-387B-4880-9832-15583272E151",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.4:b2:*:*:*:*:*:*",
"matchCriteriaId": "FD78CE26-475D-4D8B-8625-CAE850F6E876",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.4:b3:*:*:*:*:*:*",
"matchCriteriaId": "9338F9AA-41F0-470E-BB49-C1A395376DF0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.4:rc1:*:*:*:*:*:*",
"matchCriteriaId": "6297233D-6C25-4A10-8F0A-79A8452ABAD3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "929CEDEC-6D65-4E1C-97DA-B6BFF3BFEFA9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.5:rc1:*:*:*:*:*:*",
"matchCriteriaId": "B9D5A562-AEB5-41D8-9137-65B3100B1F21",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.0.6:rc1:*:*:*:*:*:*",
"matchCriteriaId": "5AD8F74D-3F4B-4E25-92C9-D20C63B4B77E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C921FD4C-E274-40C9-AFC8-CB0861889E15",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.1.0:a1:*:*:*:*:*:*",
"matchCriteriaId": "7528512B-66EC-4B2C-9158-34199C4A5FCE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.1.0:a2:*:*:*:*:*:*",
"matchCriteriaId": "106F8860-B068-4B68-8734-206BFD401C3F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.1.0:a3:*:*:*:*:*:*",
"matchCriteriaId": "240D0880-DC35-41A6-B4F2-F9B73DF4AF59",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.1.0:b1:*:*:*:*:*:*",
"matchCriteriaId": "6643B661-0253-4036-88D7-AF70B610B627",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:3.1.0:b2:*:*:*:*:*:*",
"matchCriteriaId": "EFD04E6D-B418-4BCB-A3A1-CDFDEC271497",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "79DA60EA-F94F-4890-BF9E-E142BC219118",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.0.0:a1:*:*:*:*:*:*",
"matchCriteriaId": "50BE7B3C-59D7-4FA7-A1A2-40B12EBA3832",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.0.0:a2:*:*:*:*:*:*",
"matchCriteriaId": "3F4BA541-795B-4EC2-AF47-82F331F79A1C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.0.0:a3:*:*:*:*:*:*",
"matchCriteriaId": "B89FC09F-EC04-4B40-A797-10A26D15F6D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.0.0:b1:*:*:*:*:*:*",
"matchCriteriaId": "4E510E61-0842-45EC-92E2-BE4BD584887A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.0.0:b2:*:*:*:*:*:*",
"matchCriteriaId": "E76F0561-864D-4091-8E4F-6C2DA1B77E29",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.0.0:b3:*:*:*:*:*:*",
"matchCriteriaId": "BB54A820-124E-4106-A55D-19947F32852E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "41B46352-9D4D-4C74-876F-3685016025CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.1.0:a1:*:*:*:*:*:*",
"matchCriteriaId": "40C764F4-8FAD-477E-92E5-79D234673478",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.1.0:a2:*:*:*:*:*:*",
"matchCriteriaId": "36045DDB-48C6-48CA-AAAF-A3487EF7A537",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.1.0:b1:*:*:*:*:*:*",
"matchCriteriaId": "ECA81B95-97B7-4A56-A448-6E5DB6FA5F76",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7AFCB588-F1C0-4276-993C-CB0FA2BE21F9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.2.0:a1:*:*:*:*:*:*",
"matchCriteriaId": "56113AB6-8295-4EB7-A003-79049FBB8B4C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.2.0:a2:*:*:*:*:*:*",
"matchCriteriaId": "362DA97E-B940-4649-803F-26D8C1D16DA5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.2.0:b1:*:*:*:*:*:*",
"matchCriteriaId": "950A6BA0-C348-4B89-8C18-F2AFA467649F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.2.0:b2:*:*:*:*:*:*",
"matchCriteriaId": "9088D042-F104-4F31-AEBB-75F5A0F03AE5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.2.0:rc1:*:*:*:*:*:*",
"matchCriteriaId": "1C49DF07-9612-43C7-9771-B76487B4A9CD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "CE3EE047-6A23-4BFF-9576-9E4CA63BA153",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.2.1:b1:*:*:*:*:*:*",
"matchCriteriaId": "C0F06FC0-6477-4589-B9CB-24B1F893EF09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.2.1:rc1:*:*:*:*:*:*",
"matchCriteriaId": "6CCA07EB-B0CB-40EE-B62E-DB4C408717B7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "D1707B3D-29F7-46C6-8A0A-D776E062FD4F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.2.2:b1:*:*:*:*:*:*",
"matchCriteriaId": "53551545-041A-456F-BC81-E05A6B3CB198",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.2.2:rc1:*:*:*:*:*:*",
"matchCriteriaId": "0F3DBB40-638E-4A4B-99B4-534D2564E146",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:dhcp:4.2.3:*:*:*:*:*:*:*",
"matchCriteriaId": "493B7D92-18A4-4221-AEDD-917404C47E6D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update."
},
{
"lang": "es",
"value": "La funcionalidad de registro en el dhcpd de ISC DHCP anterior a v4.2.3-P2, cuando se utiliza DNS din\u00e1mico (DDNS) y direcciones IPv6, no maneja correctamente la estructura de arrendamiento (lease structure) DHCPv6, permitiendo a atacantes remotos provocar una denegaci\u00f3n de servicio (puntero a NULL y el ca\u00edda del servicio) mediante paquetes especialmente elaborados en relaci\u00f3n con una actualizaci\u00f3n lease-status."
}
],
"id": "CVE-2011-4868",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.1,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 6.5,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2012-01-15T03:55:12.953",
"references": [
{
"source": "cve@mitre.org",
"url": "http://security.gentoo.org/glsa/glsa-201301-06.xml"
},
{
"source": "cve@mitre.org",
"url": "https://deepthought.isc.org/article/AA-00595"
},
{
"source": "cve@mitre.org",
"url": "https://kb.isc.org/article/AA-00705"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.isc.org/software/dhcp/advisories/cve-2011-4868"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://security.gentoo.org/glsa/glsa-201301-06.xml"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://deepthought.isc.org/article/AA-00595"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://kb.isc.org/article/AA-00705"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.isc.org/software/dhcp/advisories/cve-2011-4868"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-399"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
gsd-2011-4868
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2011-4868",
"description": "The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.",
"id": "GSD-2011-4868",
"references": [
"https://www.suse.com/security/cve/CVE-2011-4868.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2011-4868"
],
"details": "The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.",
"id": "GSD-2011-4868",
"modified": "2023-12-13T01:19:05.141120Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2011-4868",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://kb.isc.org/article/AA-00705",
"refsource": "CONFIRM",
"url": "https://kb.isc.org/article/AA-00705"
},
{
"name": "https://www.isc.org/software/dhcp/advisories/cve-2011-4868",
"refsource": "CONFIRM",
"url": "https://www.isc.org/software/dhcp/advisories/cve-2011-4868"
},
{
"name": "https://deepthought.isc.org/article/AA-00595",
"refsource": "CONFIRM",
"url": "https://deepthought.isc.org/article/AA-00595"
},
{
"name": "GLSA-201301-06",
"refsource": "GENTOO",
"url": "http://security.gentoo.org/glsa/glsa-201301-06.xml"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.2.1:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.2.1:b1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.1.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.1.0:b1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.0.0:a2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.0.0:a1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.6:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.4:b1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.2:b1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc8:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc7:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:rc12:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:rc11:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:rc4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel22:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel21:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel13:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel12:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel4:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel3:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:*:p1:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "4.2.3",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.2.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.2.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.2.0:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.1.0:a2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.1.0:a1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.1.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.1.0:b2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.5:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.3:b3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.3:b2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc14:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc13:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:rc10:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:rc9:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:rc8:patchlevel1:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:rc2:patchlevel1:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel20:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel19:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel11:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel10:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel9:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel2:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel1:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.2.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.2.2:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.2.0:b2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.2.0:b1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.0.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.0.0:b3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.1.0:b1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.1.0:a3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.4:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.3:b1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.2:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc12:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc11:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:rc8:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:rc7:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:rc1:patchlevel1:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel18:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel16:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel8:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel7:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.2.2:b1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.2.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.2.0:a2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.2.0:a1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.0.0:b2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.0.0:b1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:4.0.0:a3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.1.0:a2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.1.0:a1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.4:b3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.4:b2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.2:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.2:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc10:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc9:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0.1:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:rc6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:rc5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel24:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel23:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel15:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel14:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel6:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:isc:dhcp:3.0:beta2:patchlevel5:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2011-4868"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-399"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://deepthought.isc.org/article/AA-00595",
"refsource": "CONFIRM",
"tags": [],
"url": "https://deepthought.isc.org/article/AA-00595"
},
{
"name": "https://www.isc.org/software/dhcp/advisories/cve-2011-4868",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://www.isc.org/software/dhcp/advisories/cve-2011-4868"
},
{
"name": "GLSA-201301-06",
"refsource": "GENTOO",
"tags": [],
"url": "http://security.gentoo.org/glsa/glsa-201301-06.xml"
},
{
"name": "https://kb.isc.org/article/AA-00705",
"refsource": "CONFIRM",
"tags": [],
"url": "https://kb.isc.org/article/AA-00705"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.1,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 6.5,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2016-12-03T02:59Z",
"publishedDate": "2012-01-15T03:55Z"
}
}
}
ghsa-q3c7-f665-h5rw
Vulnerability from github
Published
2022-05-17 03:35
Modified
2022-05-17 03:35
VLAI Severity ?
Details
The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.
{
"affected": [],
"aliases": [
"CVE-2011-4868"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2012-01-15T03:55:00Z",
"severity": "MODERATE"
},
"details": "The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.",
"id": "GHSA-q3c7-f665-h5rw",
"modified": "2022-05-17T03:35:04Z",
"published": "2022-05-17T03:35:04Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4868"
},
{
"type": "WEB",
"url": "https://deepthought.isc.org/article/AA-00595"
},
{
"type": "WEB",
"url": "https://kb.isc.org/article/AA-00705"
},
{
"type": "WEB",
"url": "https://www.isc.org/software/dhcp/advisories/cve-2011-4868"
},
{
"type": "WEB",
"url": "http://security.gentoo.org/glsa/glsa-201301-06.xml"
}
],
"schema_version": "1.4.0",
"severity": []
}
CERTA-2012-AVI-019
Vulnerability from certfr_avis
Une vulnérabilité présente dans le serveur ISC DHCP permet à une personne malintentionnée de provoquer un déni de service.
Description
Le serveur ISC DHCP ne gère pas correctement certains paramètres DNS dynamiques associés à un bail IPv6, permettant à un utilisateur malintentionné distant de provoquer un déni de service.
Cette vulnérabilité ne concerne que les serveurs DHCP utilisant IPv6 et les options de DNS dynamique.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
ISC DHCP versions 4.2.2, 4.2.3 et 4.2.3-P1.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cp\u003eISC DHCP versions 4.2.2, 4.2.3 et 4.2.3-P1.\u003c/p\u003e",
"content": "## Description\n\nLe serveur ISC DHCP ne g\u00e8re pas correctement certains param\u00e8tres DNS\ndynamiques associ\u00e9s \u00e0 un bail IPv6, permettant \u00e0 un utilisateur\nmalintentionn\u00e9 distant de provoquer un d\u00e9ni de service.\n\nCette vuln\u00e9rabilit\u00e9 ne concerne que les serveurs DHCP utilisant IPv6 et\nles options de DNS dynamique.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-4868",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4868"
}
],
"initial_release_date": "2012-01-16T00:00:00",
"last_revision_date": "2012-01-16T00:00:00",
"links": [],
"reference": "CERTA-2012-AVI-019",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-01-16T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 pr\u00e9sente dans le serveur \u003cspan class=\"textit\"\u003eISC\nDHCP\u003c/span\u003e permet \u00e0 une personne malintentionn\u00e9e de provoquer un d\u00e9ni\nde service.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans ISC DHCP",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 ISC du 12 janvier 2012",
"url": "https://www.isc.org/software/dhcp/advisories/cve-2011-4868"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…