FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

isc-dhcp -- remotely exploitable vulnerability

Affected packages
isc-dhcp44-relay < 4.4.2-P1
isc-dhcp44-server < 4.4.2-P1
isc-dhcp44-client < 4.4.2-P1

Details

VuXML ID e24fb8f8-c39a-11eb-9370-b42e99a1b9c3
Discovery 2021-05-26
Entry 2021-06-02

Michael McNally reports:

Program code used by the ISC DHCP package to read and parse stored leases

has a defect that can be exploited by an attacker to cause one of several undesirable outcomes

References

CVE Name CVE-2021-25217
URL https://kb.isc.org/docs/cve-2021-25217