Vulnerability in Isc Dhcp
CVE-2012-3954
Multiple memory leaks in ISC DHCP 4.1.x and 4.2.x before 4.2.4-P1 and 4.1-ESV before 4.1-ESV-R6 allow remote attackers to cause a denial of service (memory consumption) by sending many requests.
EPSS: 0.045 (89.3th percentile) — read the EPSS interpretation.
Affected products
- Isc Dhcp — versions 4.1.0, 4.1.1, 4.1.2
- Canonical Ubuntu_linux — versions 11.04, 11.10, 12.04
- Debian Debian_linux — versions 6.0, 7.0
- N/a — versions n/a
Weakness classification (CWE)
References
- 1027300 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)
- DSA-2516 (vendor-advisory, Third Party Advisory, x_refsource_DEBIAN)
- RHSA-2012:1141 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
- MDVSA-2012:116 (vendor-advisory, Third Party Advisory, x_refsource_MANDRIVA)
- openSUSE-SU-2012:1006 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
- MDVSA-2012:115 (vendor-advisory, Third Party Advisory, x_refsource_MANDRIVA)
- DSA-2519 (vendor-advisory, Third Party Advisory, x_refsource_DEBIAN)
- USN-1519-1 (x_refsource_UBUNTU, vendor-advisory, Third Party Advisory)
- cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
- GLSA-201301-06 (vendor-advisory, Third Party Advisory, x_refsource_GENTOO)