DoS by sending message over IPv6 for a declined and abandoned address.

Bug #720729 reported by Dave Walker on 2011-02-17
260
This bug affects 1 person
Affects Status Importance Assigned to Milestone
isc-dhcp (Debian)
Fix Released
Unknown
isc-dhcp (Ubuntu)
Undecided
Dave Walker

Bug Description

"The DHCPv6 server in ISC DHCP 4.0.x and 4.1.x before 4.1.2-P1, 4.0-ESV and 4.1-ESV before 4.1-ESV-R1, and 4.2.x before 4.2.1b1 allows remote attackers to cause a denial of service (assertion failure and daemon crash) by sending a message over IPv6 for a declined and abandoned address."

Related branches

CVE References

Dave Walker (davewalker) on 2011-02-17
visibility: private → public
Changed in isc-dhcp (Debian):
status: Unknown → Fix Released
Dave Walker (davewalker) on 2011-02-17
Changed in isc-dhcp (Ubuntu):
assignee: nobody → Dave Walker (davewalker)
status: New → In Progress
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package isc-dhcp - 4.1.1-P1-15ubuntu3

---------------
isc-dhcp (4.1.1-P1-15ubuntu3) natty; urgency=low

  * SECURITY UPDATE: denial of service via processing of message from an address
    that was previously declined, causing assert failure. (LP: #720729)
    - debian/patches/CVE-2011-0413.dpatch: Reclaim the previously abandoned
      address in isc-dhcp/server/mdb6.c, by retagging the lease and adding
      a sane expiration value. Based on changes between upstream releases
      4.1.2 and 4.1.2-P1
    - CVE-2011-0413
 -- Dave Walker (Daviey) <email address hidden> Thu, 17 Feb 2011 16:24:57 +0000

Changed in isc-dhcp (Ubuntu):
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public Security information  Edit
Everyone can see this security related information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.