DHCP Security Advisories, Vulnerabilities, and Upgrade Recommendations

On rare occasions, software exposed to public access on the Internet is found to have some sort of flaw that could enable unauthorized access. When this happens, ISC notifies the international CVE Registry (Common Vulnerabilities and Exposures) maintained by the Mitre Corporation, and other security organizations as appropriate, such as US-CERT (Computer Emergency Readiness Team). ISC then corrects the flaw and issues an ISC Security Advisory giving users of our software our advice on how best to respond to this flaw.

This page has the complete list of all security advisories ever issued for ISC DHCP.

Reporting a bug in ISC DHCP

Before submitting a bug report please ensure first that you are running a current version. Then send your report to dhcp-bugs@isc.org, or a suggestion for a new feature to dhcp-suggest@isc.org.

Reporting security issues

If you need to report a security issue with any ISC product or service, please do so here.

Please see our Security Vulnerabilty Disclosure Policy for details on how we publish security vulnerabilities.