Joined: 12 May 2004
|Posted: Wed Sep 03, 2014 4:26 pm Post subject: [ GLSA 201409-03 ] dhcpcd: Denial of service
|Gentoo Linux Security Advisory
Title: dhcpcd: Denial of service (GLSA 201409-03)
Date: September 03, 2014
A vulnerability in dhcpcd can lead to a Denial of Service
dhcpcd is a fully featured, yet light weight RFC2131 compliant DHCP
Vulnerable: < 6.4.3
Unaffected: >= 6.4.3
Architectures: All supported architectures
A vulnerability has been discovered in dhcpcd. A malicious dhcp server
can set flags as part of the dhcp reply that can cause a Denial of
A remote attacker can cause a Denial of Service condition.
There is no known workaround at this time.
All dhcpcd users should upgrade to the latest version:
|# emerge --sync
# emerge --ask --oneshot --verbose ">=net-misc/dhcpcd-6.4.3"