[pkg-dhcp-devel] Bug#638404: isc-dhcp: two denial-of-service issues
Michael Gilbert
michael.s.gilbert at gmail.com
Fri Aug 19 03:55:58 UTC 2011
Package: isc-dhcp
Version: 4.1.1-P1-17
Severity: important
Tags: security
Hi,
the following CVE (Common Vulnerabilities & Exposures) ids were
published for isc-dhcp.
CVE-2011-2748[0]:
| The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before
| 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to
| cause a denial of service (daemon exit) via a crafted DHCP packet.
CVE-2011-2749[1]:
| The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before
| 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to
| cause a denial of service (daemon exit) via a crafted BOOTP packet.
If you fix the vulnerabilities please also make sure to include the
CVE ids in your changelog entry.
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2748
http://security-tracker.debian.org/tracker/CVE-2011-2748
[1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2749
http://security-tracker.debian.org/tracker/CVE-2011-2749
More information about the pkg-dhcp-devel
mailing list