Sebastian Poehn

**Name of the Vulnerable Software and Affected Versions** ISC DHCP versions 4.1-ESV-R11 and earlier, 4.2.x, and 4.3.x before 4.3.3-P1 ISC DHCP version 4.3.3-P1 and later are not affected, but since only vulnerable versions are listed, the above line is the final version. **Description** The issue allows remote attackers to cause a denial of service, resulting in an application crash. This is achieved by sending an invalid length field in a UDP IPv4 packet. **Recommendations** For ISC DHCP versions 4.1-ESV-R11 and earlier, update to version 4.1-ESV-R12-P1 or later. For ISC DHCP versions 4.2.x, update to version 4.3.3-P1 or later. For ISC DHCP versions 4.3.x before 4.3.3-P1, update to version 4.3.3-P1 or later.