[Debian] CVE: CVE-2022-2928: isc-dhcp : overflow and cause the server to abort
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Medium
|
Zhixiong Chi |
Bug Description
CVE-2022-2928: https:/
In ISC DHCP 4.4.0 -> 4.4.3, ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16-P1, when the function option_
Score:
cve_id status cvss3Score av ac pr ui ai
CVE-2022-2928 fixed 7.5 N L N N H
References:
https:/
Found during November 2022 CVE scan using vulscan
Changed in starlingx: | |
importance: | Undecided → Medium |
status: | New → Triaged |
assignee: | nobody → Zhixiong Chi (zhixiongchi) |
information type: | Public → Public Security |
tags: | added: stx.8.0 stx.security |
Changed in starlingx: | |
status: | Triaged → In Progress |
Fix proposed to branch: master /review. opendev. org/c/starlingx /integ/ +/865278
Review: https:/