CVE-2015-8605: Input Validation
First published: Thu Jan 14 2016(Updated: )
ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service (application crash) via an invalid length field in a UDP IPv4 packet.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sophos Unified Threat Management | <=9.318 | |
| Sophos Unified Threat Management | <=9.353 | |
| ISC DHCP | =4.0.0 | |
| ISC DHCP | =4.0.1 | |
| ISC DHCP | =4.0.2 | |
| ISC DHCP | =4.0.2-p1 | |
| ISC DHCP | =4.0.3 | |
| ISC DHCP | =4.0.3-rc1 | |
| ISC DHCP | =4.1-esv | |
| ISC DHCP | =4.1-esv-r1 | |
| ISC DHCP | =4.1-esv-r10 | |
| ISC DHCP | =4.1-esv-r10_b1 | |
| ISC DHCP | =4.1-esv-r11_b1 | |
| ISC DHCP | =4.1-esv-r11_rc1 | |
| ISC DHCP | =4.1-esv-r11_rc2 | |
| ISC DHCP | =4.1-esv-r12 | |
| ISC DHCP | =4.1-esv-r12_b1 | |
| ISC DHCP | =4.1-esv-r2 | |
| ISC DHCP | =4.1-esv-r3 | |
| ISC DHCP | =4.1-esv-r3_b1 | |
| ISC DHCP | =4.1-esv-r4 | |
| ISC DHCP | =4.1-esv-r5 | |
| ISC DHCP | =4.1-esv-r5_b1 | |
| ISC DHCP | =4.1-esv-r5_rc1 | |
| ISC DHCP | =4.1-esv-r5_rc2 | |
| ISC DHCP | =4.1-esv-r6 | |
| ISC DHCP | =4.1-esv-r7 | |
| ISC DHCP | =4.1-esv-r8 | |
| ISC DHCP | =4.1-esv-r8_b1 | |
| ISC DHCP | =4.1-esv-r8_rc1 | |
| ISC DHCP | =4.1-esv-r9 | |
| ISC DHCP | =4.1-esv-r9_b1 | |
| ISC DHCP | =4.1-esv-r9_rc1 | |
| ISC DHCP | =4.1.0 | |
| ISC DHCP | =4.1.1 | |
| ISC DHCP | =4.1.1-p1 | |
| ISC DHCP | =4.1.2 | |
| ISC DHCP | =4.1.2-b1 | |
| ISC DHCP | =4.1.2-p1 | |
| ISC DHCP | =4.1.2-rc1 | |
| ISC DHCP | =4.2.0 | |
| ISC DHCP | =4.2.0-p1 | |
| ISC DHCP | =4.2.0-p2 | |
| ISC DHCP | =4.2.1 | |
| ISC DHCP | =4.2.1-b1 | |
| ISC DHCP | =4.2.1-p1 | |
| ISC DHCP | =4.2.1-rc1 | |
| ISC DHCP | =4.2.2 | |
| ISC DHCP | =4.2.2-b1 | |
| ISC DHCP | =4.2.2-rc1 | |
| ISC DHCP | =4.2.3 | |
| ISC DHCP | =4.2.3-p1 | |
| ISC DHCP | =4.2.3-p2 | |
| ISC DHCP | =4.2.4 | |
| ISC DHCP | =4.2.4-b1 | |
| ISC DHCP | =4.2.4-p1 | |
| ISC DHCP | =4.2.4-p2 | |
| ISC DHCP | =4.2.4-rc1 | |
| ISC DHCP | =4.2.4-rc2 | |
| ISC DHCP | =4.2.5 | |
| ISC DHCP | =4.2.5-b1 | |
| ISC DHCP | =4.2.5-p1 | |
| ISC DHCP | =4.2.5-rc1 | |
| ISC DHCP | =4.2.6 | |
| ISC DHCP | =4.2.6-b1 | |
| ISC DHCP | =4.2.6-rc1 | |
| ISC DHCP | =4.2.7 | |
| ISC DHCP | =4.2.7-b1 | |
| ISC DHCP | =4.2.7-rc1 | |
| ISC DHCP | =4.2.8 | |
| ISC DHCP | =4.2.8-b1 | |
| ISC DHCP | =4.2.8-rc1 | |
| ISC DHCP | =4.2.8-rc2 | |
| ISC DHCP | =4.3.0 | |
| ISC DHCP | =4.3.0-a1 | |
| ISC DHCP | =4.3.0-b1 | |
| ISC DHCP | =4.3.0-rc1 | |
| ISC DHCP | =4.3.1 | |
| ISC DHCP | =4.3.1-b1 | |
| ISC DHCP | =4.3.1-rc1 | |
| ISC DHCP | =4.3.2 | |
| ISC DHCP | =4.3.2-b1 | |
| ISC DHCP | =4.3.2-rc1 | |
| ISC DHCP | =4.3.2-rc2 | |
| ISC DHCP | =4.3.3 | |
| ISC DHCP | =4.3.3-b1 | |
| Debian | =7.0 | |
| Debian | =8.0 | |
| Debian | =9.0 | |
| Ubuntu | =12.04 | |
| Ubuntu | =14.04 | |
| Ubuntu | =15.04 | |
| Ubuntu | =15.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175594.html
- http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176031.html
- http://lists.opensuse.org/opensuse-updates/2016-02/msg00162.html
- http://lists.opensuse.org/opensuse-updates/2016-02/msg00168.html
- http://www.debian.org/security/2016/dsa-3442
- http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html
- http://www.securityfocus.com/bid/80703
- http://www.securitytracker.com/id/1034657
- http://www.ubuntu.com/usn/USN-2868-1
- https://blogs.sophos.com/2016/02/17/utm-up2date-9-354-released/
- https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/
- https://kb.isc.org/article/AA-01334
Frequently Asked Questions
What is the severity of CVE-2015-8605?
CVE-2015-8605 has a severity rating that indicates it can lead to a denial of service through application crashes.
How do I fix CVE-2015-8605?
To fix CVE-2015-8605, upgrade to ISC DHCP versions 4.1-ESV-R12-P1, 4.3.3-P1 or later.
What types of systems are affected by CVE-2015-8605?
CVE-2015-8605 affects several versions of ISC DHCP Server and Sophos Unified Threat Management software.
How does CVE-2015-8605 exploit the system?
CVE-2015-8605 exploits the system by sending an invalid length field in a UDP IPv4 packet to trigger application crashes.
What potential impact does CVE-2015-8605 have on network services?
CVE-2015-8605 may lead to network service disruptions, affecting stability and availability due to crashes.
- agent/type
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- vendor/sophos
- canonical/sophos unified threat management
- version/sophos unified threat management/9.318
- version/sophos unified threat management/9.353
- vendor/isc
- canonical/isc dhcp
- version/isc dhcp/4.0.0
- version/isc dhcp/4.0.1
- version/isc dhcp/4.0.2
- version/isc dhcp/4.0.2-p1
- version/isc dhcp/4.0.3
- version/isc dhcp/4.0.3-rc1
- version/isc dhcp/4.1-esv
- version/isc dhcp/4.1-esv-r1
- version/isc dhcp/4.1-esv-r10
- version/isc dhcp/4.1-esv-r10_b1
- version/isc dhcp/4.1-esv-r11_b1
- version/isc dhcp/4.1-esv-r11_rc1
- version/isc dhcp/4.1-esv-r11_rc2
- version/isc dhcp/4.1-esv-r12
- version/isc dhcp/4.1-esv-r12_b1
- version/isc dhcp/4.1-esv-r2
- version/isc dhcp/4.1-esv-r3
- version/isc dhcp/4.1-esv-r3_b1
- version/isc dhcp/4.1-esv-r4
- version/isc dhcp/4.1-esv-r5
- version/isc dhcp/4.1-esv-r5_b1
- version/isc dhcp/4.1-esv-r5_rc1
- version/isc dhcp/4.1-esv-r5_rc2
- version/isc dhcp/4.1-esv-r6
- version/isc dhcp/4.1-esv-r7
- version/isc dhcp/4.1-esv-r8
- version/isc dhcp/4.1-esv-r8_b1
- version/isc dhcp/4.1-esv-r8_rc1
- version/isc dhcp/4.1-esv-r9
- version/isc dhcp/4.1-esv-r9_b1
- version/isc dhcp/4.1-esv-r9_rc1
- version/isc dhcp/4.1.0
- version/isc dhcp/4.1.1
- version/isc dhcp/4.1.1-p1
- version/isc dhcp/4.1.2
- version/isc dhcp/4.1.2-b1
- version/isc dhcp/4.1.2-p1
- version/isc dhcp/4.1.2-rc1
- version/isc dhcp/4.2.0
- version/isc dhcp/4.2.0-p1
- version/isc dhcp/4.2.0-p2
- version/isc dhcp/4.2.1
- version/isc dhcp/4.2.1-b1
- version/isc dhcp/4.2.1-p1
- version/isc dhcp/4.2.1-rc1
- version/isc dhcp/4.2.2
- version/isc dhcp/4.2.2-b1
- version/isc dhcp/4.2.2-rc1
- version/isc dhcp/4.2.3
- version/isc dhcp/4.2.3-p1
- version/isc dhcp/4.2.3-p2
- version/isc dhcp/4.2.4
- version/isc dhcp/4.2.4-b1
- version/isc dhcp/4.2.4-p1
- version/isc dhcp/4.2.4-p2
- version/isc dhcp/4.2.4-rc1
- version/isc dhcp/4.2.4-rc2
- version/isc dhcp/4.2.5
- version/isc dhcp/4.2.5-b1
- version/isc dhcp/4.2.5-p1
- version/isc dhcp/4.2.5-rc1
- version/isc dhcp/4.2.6
- version/isc dhcp/4.2.6-b1
- version/isc dhcp/4.2.6-rc1
- version/isc dhcp/4.2.7
- version/isc dhcp/4.2.7-b1
- version/isc dhcp/4.2.7-rc1
- version/isc dhcp/4.2.8
- version/isc dhcp/4.2.8-b1
- version/isc dhcp/4.2.8-rc1
- version/isc dhcp/4.2.8-rc2
- version/isc dhcp/4.3.0
- version/isc dhcp/4.3.0-a1
- version/isc dhcp/4.3.0-b1
- version/isc dhcp/4.3.0-rc1
- version/isc dhcp/4.3.1
- version/isc dhcp/4.3.1-b1
- version/isc dhcp/4.3.1-rc1
- version/isc dhcp/4.3.2
- version/isc dhcp/4.3.2-b1
- version/isc dhcp/4.3.2-rc1
- version/isc dhcp/4.3.2-rc2
- version/isc dhcp/4.3.3
- version/isc dhcp/4.3.3-b1
- vendor/debian
- canonical/debian
- version/debian/7.0
- version/debian/8.0
- version/debian/9.0
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/12.04
- version/ubuntu/14.04
- version/ubuntu/15.04
- version/ubuntu/15.10