Debian Bug report logs -
#1021320
isc-dhcp: CVE-2022-2928 CVE-2022-2929
Package:
src:isc-dhcp;
Maintainer for src:isc-dhcp is Debian ISC DHCP Maintainers <isc-dhcp@packagesdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Wed, 5 Oct 2022 18:42:01 UTC
Severity: grave
Tags: security, upstream
...
Several vulnerabilities have been discovered in the ISC DHCP client,
relay and server
CVE-2022-2928
It was discovered that the DHCP server does not correctly perform
option reference counting when configured with "allow leasequery;"
A remote attacker can take advantage of this flaw to cause a denial
of service (daemon crash)
CVE ...
Synopsis
Critical: Multicluster Engine for Kubernetes 217 security fixes and container updates
Type/Severity
Security Advisory: Critical
Topic
Multicluster Engine for Kubernetes 217 General Availability release images, which address security issues and update container imagesRed Hat Product Security has rated this update as having a secu ...
Synopsis
Critical: Multicluster Engine for Kubernetes 209 security fixes and container updates
Type/Severity
Security Advisory: Critical
Topic
Multicluster Engine for Kubernetes 209 General Availability release images, which fix security issues and update container imagesRed Hat Product Security has rated this update as having a security ...
Synopsis
Moderate: dhcp security and bug fix update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for dhcp is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as havin ...
Synopsis
Critical: Multicluster Engine for Kubernetes 224 security fixes and container updates
Type/Severity
Security Advisory: Critical
Topic
Multicluster Engine for Kubernetes 224 General Availability release images, which fix security issues and update container imagesRed Hat Product Security has rated this update as having a security ...
Synopsis
Important: OpenShift Container Platform 4132 bug fix and security update
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Container Platform release 4132 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift C ...
Several security issues were fixed in DHCP ...
Several security issues were fixed in DHCP ...
Several security issues were fixed in DHCP ...
An integer overflow vulnerability was found in the DHCP server When the "option_code_hash_lookup()" function is called from "add_option()", it increases the option's "refcount" field However, there is not a corresponding call to "option_dereference()" to decrement the "refcount" field The "add_option()" function is only used in server responses ...
Description<!---->
An integer overflow vulnerability was found in the DHCP server When the &quot;option_code_hash_lookup()&quot; function is called from &quot;add_option()&quot;, it increases the option's &quot;refcount&quot; field However, there is not a corresponding call to &quot;option_dereference()&quo ...