CVE-2016-2774

Priority
Description
ISC DHCP 4.1.x before 4.1-ESV-R13 and 4.2.x and 4.3.x before 4.3.4 does not
restrict the number of concurrent TCP sessions, which allows remote
attackers to cause a denial of service (INSIST assertion failure or
request-processing outage) by establishing many sessions.
Notes
 mdeslaur> DoS over OMAPI and failover ports only, see ISC kb article
 mdeslaur> for workarounds, or properly limit access to ports
Package
Upstream:released (4.3.4)
Ubuntu 12.04 ESM (Precise Pangolin):needed
Trusty/esm:released (4.2.4-7ubuntu12.12)
Ubuntu 16.04 LTS (Xenial Xerus):released (4.3.3-5ubuntu12.9)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.3.5-3ubuntu2)
Ubuntu 18.10 (Cosmic Cuttlefish):not-affected (4.3.5-3ubuntu2)
Ubuntu 19.04 (Disco Dingo):not-affected (4.3.5-3ubuntu2)
Ubuntu 19.10 (Eoan):not-affected (4.3.5-3ubuntu2)
Patches:
Upstream:https://source.isc.org/cgi-bin/gitweb.cgi?p=dhcp.git;a=commit;h=0b209ea5cc333255e055113fa2ad636dda681a21
More Information

Updated: 2019-04-26 14:16:51 UTC (commit 30899e40836d26e1bb5f0b072d31fd87b6cf3bd4)