Debian Security Advisory DSA 2292-1 (isc-dhcp) Network Vulnerability

Summary

The remote host is missing an update to isc-dhcp announced via advisory DSA 2292-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202292-1

Insight

David Zych discovered that the ISC DHCP crashes when processing certain packets, leading to a denial of service. For the oldstable distribution (lenny), this problem has been fixed in version 3.1.1-6+lenny6 of the dhcp3 package. For the stable distribution (squeeze), this problem has been fixed in version 4.1.1-P1-15+squeeze3 of the isc-dhcp package. For the testing distribution (wheezy) and the unstable distribution (sid), this problem will be fixed soon. We recommend that you upgrade your ISC DHCP packages.

Severity

Classification

CVE CVE-2011-2748, CVE-2011-2749

CVSS	Base Score: 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C

Related Vulnerabilities

Debian Security Advisory DSA 1024-1 (clamav)
Debian Security Advisory DSA 1063-1 (phpgroupware)
Debian Security Advisory DSA 016-1 (wu-ftpd)
Debian Security Advisory DSA 073-1 (imp)
Debian Security Advisory DSA 1026-1 (sash)

Take action and discover your vulnerabilities