Ubuntu security notices
USN-3586-1: DHCP vulnerabilities
USN-3586-1: DHCP vulnerabilities Ubuntu Security Notice USN-3586-1 1st March, 2018 isc-dhcp vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Several security issues were fixed in DHCP. Software description isc-dhcp – DHCP server and client Details Konstantin Orekhov discovered that the DHCP server incorrectly handled alarge number of concurrent TCP sessions. A remote attacker could possiblyuse this issue to cause a denial of service. This issue only affectedUbuntu 14.04 LTS and Ubuntu 16.04 LTS. (CVE-2016-2774) It was discovered that the DHCP server incorrectly handled socketdescriptors. A remote attacker could possibly use this issue to cause adenial of service. (CVE-2017-3144) Felix Wilhelm discovered that the DHCP client incorrectly handled certainmalformed responses. A remote attacker could use this issue to cause theDHCP client to crash, resulting in a denial of [ more… ]