ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service (application crash) via an invalid length field in a UDP IPv4 packet.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "isc-dhcp-relay": "4.2.4-7ubuntu12.4", "isc-dhcp-relay-dbg": "4.2.4-7ubuntu12.4", "isc-dhcp-server": "4.2.4-7ubuntu12.4", "isc-dhcp-server-dbg": "4.2.4-7ubuntu12.4", "isc-dhcp-relay-dbgsym": "4.2.4-7ubuntu12.4", "isc-dhcp-server-ldap-dbgsym": "4.2.4-7ubuntu12.4", "isc-dhcp-client-udeb-dbgsym": "4.2.4-7ubuntu12.4", "isc-dhcp-dev": "4.2.4-7ubuntu12.4", "isc-dhcp-client-dbgsym": "4.2.4-7ubuntu12.4", "isc-dhcp-client-udeb": "4.2.4-7ubuntu12.4", "isc-dhcp-server-ldap": "4.2.4-7ubuntu12.4", "isc-dhcp-common": "4.2.4-7ubuntu12.4", "isc-dhcp-server-dbgsym": "4.2.4-7ubuntu12.4", "isc-dhcp-common-dbgsym": "4.2.4-7ubuntu12.4", "isc-dhcp-client": "4.2.4-7ubuntu12.4", "isc-dhcp-client-dbg": "4.2.4-7ubuntu12.4" } ] }