CVE-2018-5732

Name of the Vulnerable Software and Affected Versions ISC DHCP versions 4.1.0 through 4.1-ESV-R15 ISC DHCP versions 4.2.0 through 4.2.8 ISC DHCP versions 4.3.0 through 4.3.6 ISC DHCP versions 4.4.0

Description The issue is related to a buffer overflow in the dhclient due to insufficient bounds checking of a buffer used for processing DHCP options. This can be exploited by a malicious server or an entity masquerading as a server, which sends a response containing a specially constructed options section, potentially causing a crash or allowing for the execution of arbitrary code.

Recommendations For ISC DHCP versions 4.1.0 through 4.1-ESV-R15, update to a version outside of this range to resolve the issue. For ISC DHCP versions 4.2.0 through 4.2.8, update to a version outside of this range to resolve the issue. For ISC DHCP versions 4.3.0 through 4.3.6, update to a version outside of this range to resolve the issue. For ISC DHCP version 4.4.0, update to a version outside of this range to resolve the issue.