CVE-2011-4868
published 2012-01-15CVE-2011-4868: The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6…
PriorityP423medium6.1CVSS 2.0
AVAACLAuNCNINAC
EPSS
3.61%
88.1th percentile
The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | isc-dhcp | < isc-dhcp 4.2.2.dfsg.1-5 (bookworm) | isc-dhcp 4.2.2.dfsg.1-5 (bookworm) |
| isc | dhcp | <= 4.2.3 | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
| isc | dhcp | — | — |
CVSS provenance
nvdv2.06.1MEDIUMAV:A/AC:L/Au:N/C:N/I:N/A:C
osv6.1MEDIUM
vendor_debian6.1LOW
vendor_redhat6.1MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
dhcp: error in DDNS processing of DHCPv6 leases can cause ISC dhcpd crash
vendor_redhat·2012-01-12·CVSS 6.1
CVE-2011-4868 [MEDIUM] dhcp: error in DDNS processing of DHCPv6 leases can cause ISC dhcpd crash
dhcp: error in DDNS processing of DHCPv6 leases can cause ISC dhcpd crash
The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.
Statement: Not vulnerable. This issue did not affect the versions of dhcp as shipped with Red Hat Enterprise Linux 4, 5, and 6 as they did not include support for enhanced DDNS logging.
Package: dhcp (Red Hat Enterprise Linux 4) - Not affected
Package: dhcp (Red Hat Enterprise Linux 5) - Not affected
Package: dhcp (Red Hat Enterprise Linux 6) - Not affected
Debian
CVE-2011-4868: isc-dhcp - The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynam...
vendor_debian·2011·CVSS 6.1
CVE-2011-4868 [MEDIUM] CVE-2011-4868: isc-dhcp - The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynam...
The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.
Scope: local
bookworm: resolved (fixed in 4.2.2.dfsg.1-5)
bullseye: resolved (fixed in 4.2.2.dfsg.1-5)
sid: resolved (fixed in 4.2.2.dfsg.1-5)
trixie: resolved (fixed in 4.2.2.dfsg.1-5)
GHSA
GHSA-q3c7-f665-h5rw: The logging functionality in dhcpd in ISC DHCP before 4
ghsa_unreviewed·2022-05-17
CVE-2011-4868 [MEDIUM] GHSA-q3c7-f665-h5rw: The logging functionality in dhcpd in ISC DHCP before 4
The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.
OSV
CVE-2011-4868: The logging functionality in dhcpd in ISC DHCP before 4
osv·2012-01-15·CVSS 6.1
CVE-2011-4868 [MEDIUM] CVE-2011-4868: The logging functionality in dhcpd in ISC DHCP before 4
The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets related to a lease-status update.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2011-4868 CVE-2011-4868 ISC DHCP Error in DDNS Processing of DHCPv6 Leases Can Cause a Crash in ISC dhcpd [fedora-all]
bugzilla·2012-01-13·CVSS 6.1
CVE-2011-4868 [MEDIUM] CVE-2011-4868 CVE-2011-4868 ISC DHCP Error in DDNS Processing of DHCPv6 Leases Can Cause a Crash in ISC dhcpd [fedora-all]
CVE-2011-4868 CVE-2011-4868 ISC DHCP Error in DDNS Processing of DHCPv6 Leases Can Cause a Crash in ISC dhcpd [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admi
Bugzilla
CVE-2011-4868 dhcp: error in DDNS processing of DHCPv6 leases can cause ISC dhcpd crash
bugzilla·2012-01-13·CVSS 6.1
CVE-2011-4868 [MEDIUM] CVE-2011-4868 dhcp: error in DDNS processing of DHCPv6 leases can cause ISC dhcpd crash
CVE-2011-4868 dhcp: error in DDNS processing of DHCPv6 leases can cause ISC dhcpd crash
http://www.isc.org/advisories
An Error in DDNS Processing of DHCPv6 Leases Can Cause a Crash in ISC dhcpd
Improper handling of Dynamic DNS information associated with DHCPv6 leases can cause a segmentation fault in ISC DHCP servers using IPv6 and Dynamic DNS, resulting in denial of service to clients.
Versions affected: 4.2.2, 4.2.3, 4.2.3-P1
From diff:
+ Changes since 4.2.3-P1
+
+! Modify the DDNS handling code. In a previous patch we added logging
+ code to the DDNS handling. This code included a bug that caused it
+ to attempt to dereference a NULL pointer and eventually segfault.
+ While reviewing the code as we addressed this problem, we determined
+ that some of the updates to the lease stru
http://security.gentoo.org/glsa/glsa-201301-06.xmlhttps://deepthought.isc.org/article/AA-00595https://kb.isc.org/article/AA-00705https://www.isc.org/software/dhcp/advisories/cve-2011-4868http://security.gentoo.org/glsa/glsa-201301-06.xmlhttps://deepthought.isc.org/article/AA-00595https://kb.isc.org/article/AA-00705https://www.isc.org/software/dhcp/advisories/cve-2011-4868
2012-01-15
Published