FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

isc-dhcp-server -- Empty link-address denial of service

Affected packages
4.1.0 <= isc-dhcp41-server < 4.1.2

Details

VuXML ID f154a3c7-f7f4-11df-b617-00e0815b8da8
Discovery 2010-11-02
Entry 2010-11-24

ISC reports:

If the server receives a DHCPv6 packet containing one or more Relay-Forward messages, and none of them supply an address in the Relay-Forward link-address field, then the server will crash. This can be used as a single packet crash attack vector.

References

CVE Name CVE-2010-3611
URL http://www.isc.org/software/dhcp/advisories/cve-2010-3611
URL http://www.kb.cert.org/vuls/id/102047