Your submission was sent successfully! Close

CVE-2012-2152

Published: 25 July 2012

Stack-based buffer overflow in the get_packet method in socket.c in dhcpcd 3.2.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long packet.

Priority

Medium

Status

Package Release Status
dhcpcd
Launchpad, Ubuntu, Debian
Upstream
Released (1:3.2.3-11)
Ubuntu 16.04 ESM (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected [1:3.2.3-11])
Patches:
Vendor: http://www.debian.org/security/2012/dsa-2498