DHCP: Server Crash with Empty Link-Address Field
If the server receives a DHCPv6 packet containing one or more Relay-Forward messages, and none of them supply an address in the Relay-Forward link-address field, then the server will crash. This can be used as a single packet crash attack vector.
CVSS: 4.2 (for more on CVSS scores and to calculate your environment's specific risk, please visit: CVSS Calculator)
Impact and Risk Assessment: This can be used as a single packet crash attack vector if the server was explicitly configured to serve DHCPv6.
Upgrade DHCP to 4.0.2, 4.1.2, or 4.2.0-P1.
Acknowledgment: John Gibbins, for finding issue and testing patch.
Revision History: Added acknowledgment to John Gibbins
Changed date to Nov 2nd
For more information please contact firstname.lastname@example.org
- BIND 10
- Other Software Projects
- security advisories
- software forums
- ABOUT ISC