CVE-2015-8605

Published: 12 January 2016

ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service (application crash) via an invalid length field in a UDP IPv4 packet.

Priority

Medium

CVSS 3 base score: 6.5

Status

Package Release Status
isc-dhcp
Launchpad, Ubuntu, Debian
Upstream
Released (4.1-ESV-R13,4.3.3-P1)
Ubuntu 16.04 LTS (Xenial Xerus)
Released (4.3.1-5ubuntu5)
Ubuntu 14.04 ESM (Trusty Tahr)
Released (4.2.4-7ubuntu12.4)
Ubuntu 12.04 ESM (Precise Pangolin)
Released (4.1.ESV-R4-0ubuntu5.10)