CVE-2015-8605: Input Validation
First published: Thu Jan 14 2016(Updated: )
ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service (application crash) via an invalid length field in a UDP IPv4 packet.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sophos Unified Threat Management Up2date | <=9.318 | |
| Sophos Unified Threat Management Up2date | <=9.353 | |
| ISC DHCP Server | =4.0.0 | |
| ISC DHCP Server | =4.0.1 | |
| ISC DHCP Server | =4.0.2 | |
| ISC DHCP Server | =4.0.2-p1 | |
| ISC DHCP Server | =4.0.3 | |
| ISC DHCP Server | =4.0.3-rc1 | |
| ISC DHCP Server | =4.1-esv | |
| ISC DHCP Server | =4.1-esv-r1 | |
| ISC DHCP Server | =4.1-esv-r10 | |
| ISC DHCP Server | =4.1-esv-r10_b1 | |
| ISC DHCP Server | =4.1-esv-r11_b1 | |
| ISC DHCP Server | =4.1-esv-r11_rc1 | |
| ISC DHCP Server | =4.1-esv-r11_rc2 | |
| ISC DHCP Server | =4.1-esv-r12 | |
| ISC DHCP Server | =4.1-esv-r12_b1 | |
| ISC DHCP Server | =4.1-esv-r2 | |
| ISC DHCP Server | =4.1-esv-r3 | |
| ISC DHCP Server | =4.1-esv-r3_b1 | |
| ISC DHCP Server | =4.1-esv-r4 | |
| ISC DHCP Server | =4.1-esv-r5 | |
| ISC DHCP Server | =4.1-esv-r5_b1 | |
| ISC DHCP Server | =4.1-esv-r5_rc1 | |
| ISC DHCP Server | =4.1-esv-r5_rc2 | |
| ISC DHCP Server | =4.1-esv-r6 | |
| ISC DHCP Server | =4.1-esv-r7 | |
| ISC DHCP Server | =4.1-esv-r8 | |
| ISC DHCP Server | =4.1-esv-r8_b1 | |
| ISC DHCP Server | =4.1-esv-r8_rc1 | |
| ISC DHCP Server | =4.1-esv-r9 | |
| ISC DHCP Server | =4.1-esv-r9_b1 | |
| ISC DHCP Server | =4.1-esv-r9_rc1 | |
| ISC DHCP Server | =4.1.0 | |
| ISC DHCP Server | =4.1.1 | |
| ISC DHCP Server | =4.1.1-p1 | |
| ISC DHCP Server | =4.1.2 | |
| ISC DHCP Server | =4.1.2-b1 | |
| ISC DHCP Server | =4.1.2-p1 | |
| ISC DHCP Server | =4.1.2-rc1 | |
| ISC DHCP Server | =4.2.0 | |
| ISC DHCP Server | =4.2.0-p1 | |
| ISC DHCP Server | =4.2.0-p2 | |
| ISC DHCP Server | =4.2.1 | |
| ISC DHCP Server | =4.2.1-b1 | |
| ISC DHCP Server | =4.2.1-p1 | |
| ISC DHCP Server | =4.2.1-rc1 | |
| ISC DHCP Server | =4.2.2 | |
| ISC DHCP Server | =4.2.2-b1 | |
| ISC DHCP Server | =4.2.2-rc1 | |
| ISC DHCP Server | =4.2.3 | |
| ISC DHCP Server | =4.2.3-p1 | |
| ISC DHCP Server | =4.2.3-p2 | |
| ISC DHCP Server | =4.2.4 | |
| ISC DHCP Server | =4.2.4-b1 | |
| ISC DHCP Server | =4.2.4-p1 | |
| ISC DHCP Server | =4.2.4-p2 | |
| ISC DHCP Server | =4.2.4-rc1 | |
| ISC DHCP Server | =4.2.4-rc2 | |
| ISC DHCP Server | =4.2.5 | |
| ISC DHCP Server | =4.2.5-b1 | |
| ISC DHCP Server | =4.2.5-p1 | |
| ISC DHCP Server | =4.2.5-rc1 | |
| ISC DHCP Server | =4.2.6 | |
| ISC DHCP Server | =4.2.6-b1 | |
| ISC DHCP Server | =4.2.6-rc1 | |
| ISC DHCP Server | =4.2.7 | |
| ISC DHCP Server | =4.2.7-b1 | |
| ISC DHCP Server | =4.2.7-rc1 | |
| ISC DHCP Server | =4.2.8 | |
| ISC DHCP Server | =4.2.8-b1 | |
| ISC DHCP Server | =4.2.8-rc1 | |
| ISC DHCP Server | =4.2.8-rc2 | |
| ISC DHCP Server | =4.3.0 | |
| ISC DHCP Server | =4.3.0-a1 | |
| ISC DHCP Server | =4.3.0-b1 | |
| ISC DHCP Server | =4.3.0-rc1 | |
| ISC DHCP Server | =4.3.1 | |
| ISC DHCP Server | =4.3.1-b1 | |
| ISC DHCP Server | =4.3.1-rc1 | |
| ISC DHCP Server | =4.3.2 | |
| ISC DHCP Server | =4.3.2-b1 | |
| ISC DHCP Server | =4.3.2-rc1 | |
| ISC DHCP Server | =4.3.2-rc2 | |
| ISC DHCP Server | =4.3.3 | |
| ISC DHCP Server | =4.3.3-b1 | |
| Debian Debian Linux | =7.0 | |
| Debian Debian Linux | =8.0 | |
| Debian Debian Linux | =9.0 | |
| Canonical Ubuntu Linux | =12.04 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =15.04 | |
| Canonical Ubuntu Linux | =15.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.fedoraproject.org/pipermail/package-announce/2016-January/175594.html
- http://lists.fedoraproject.org/pipermail/package-announce/2016-January/176031.html
- http://lists.opensuse.org/opensuse-updates/2016-02/msg00162.html
- http://lists.opensuse.org/opensuse-updates/2016-02/msg00168.html
- http://www.debian.org/security/2016/dsa-3442
- http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html
- http://www.securityfocus.com/bid/80703
- http://www.securitytracker.com/id/1034657
- http://www.ubuntu.com/usn/USN-2868-1
- https://blogs.sophos.com/2016/02/17/utm-up2date-9-354-released/
- https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/
- https://kb.isc.org/article/AA-01334
- agent/type
- agent/references
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/sophos
- canonical/sophos unified threat management up2date
- version/sophos unified threat management up2date/9.318
- version/sophos unified threat management up2date/9.353
- vendor/isc
- canonical/isc dhcp server
- version/isc dhcp server/4.0.0
- version/isc dhcp server/4.0.1
- version/isc dhcp server/4.0.2
- version/isc dhcp server/4.0.2-p1
- version/isc dhcp server/4.0.3
- version/isc dhcp server/4.0.3-rc1
- version/isc dhcp server/4.1-esv
- version/isc dhcp server/4.1-esv-r1
- version/isc dhcp server/4.1-esv-r10
- version/isc dhcp server/4.1-esv-r10_b1
- version/isc dhcp server/4.1-esv-r11_b1
- version/isc dhcp server/4.1-esv-r11_rc1
- version/isc dhcp server/4.1-esv-r11_rc2
- version/isc dhcp server/4.1-esv-r12
- version/isc dhcp server/4.1-esv-r12_b1
- version/isc dhcp server/4.1-esv-r2
- version/isc dhcp server/4.1-esv-r3
- version/isc dhcp server/4.1-esv-r3_b1
- version/isc dhcp server/4.1-esv-r4
- version/isc dhcp server/4.1-esv-r5
- version/isc dhcp server/4.1-esv-r5_b1
- version/isc dhcp server/4.1-esv-r5_rc1
- version/isc dhcp server/4.1-esv-r5_rc2
- version/isc dhcp server/4.1-esv-r6
- version/isc dhcp server/4.1-esv-r7
- version/isc dhcp server/4.1-esv-r8
- version/isc dhcp server/4.1-esv-r8_b1
- version/isc dhcp server/4.1-esv-r8_rc1
- version/isc dhcp server/4.1-esv-r9
- version/isc dhcp server/4.1-esv-r9_b1
- version/isc dhcp server/4.1-esv-r9_rc1
- version/isc dhcp server/4.1.0
- version/isc dhcp server/4.1.1
- version/isc dhcp server/4.1.1-p1
- version/isc dhcp server/4.1.2
- version/isc dhcp server/4.1.2-b1
- version/isc dhcp server/4.1.2-p1
- version/isc dhcp server/4.1.2-rc1
- version/isc dhcp server/4.2.0
- version/isc dhcp server/4.2.0-p1
- version/isc dhcp server/4.2.0-p2
- version/isc dhcp server/4.2.1
- version/isc dhcp server/4.2.1-b1
- version/isc dhcp server/4.2.1-p1
- version/isc dhcp server/4.2.1-rc1
- version/isc dhcp server/4.2.2
- version/isc dhcp server/4.2.2-b1
- version/isc dhcp server/4.2.2-rc1
- version/isc dhcp server/4.2.3
- version/isc dhcp server/4.2.3-p1
- version/isc dhcp server/4.2.3-p2
- version/isc dhcp server/4.2.4
- version/isc dhcp server/4.2.4-b1
- version/isc dhcp server/4.2.4-p1
- version/isc dhcp server/4.2.4-p2
- version/isc dhcp server/4.2.4-rc1
- version/isc dhcp server/4.2.4-rc2
- version/isc dhcp server/4.2.5
- version/isc dhcp server/4.2.5-b1
- version/isc dhcp server/4.2.5-p1
- version/isc dhcp server/4.2.5-rc1
- version/isc dhcp server/4.2.6
- version/isc dhcp server/4.2.6-b1
- version/isc dhcp server/4.2.6-rc1
- version/isc dhcp server/4.2.7
- version/isc dhcp server/4.2.7-b1
- version/isc dhcp server/4.2.7-rc1
- version/isc dhcp server/4.2.8
- version/isc dhcp server/4.2.8-b1
- version/isc dhcp server/4.2.8-rc1
- version/isc dhcp server/4.2.8-rc2
- version/isc dhcp server/4.3.0
- version/isc dhcp server/4.3.0-a1
- version/isc dhcp server/4.3.0-b1
- version/isc dhcp server/4.3.0-rc1
- version/isc dhcp server/4.3.1
- version/isc dhcp server/4.3.1-b1
- version/isc dhcp server/4.3.1-rc1
- version/isc dhcp server/4.3.2
- version/isc dhcp server/4.3.2-b1
- version/isc dhcp server/4.3.2-rc1
- version/isc dhcp server/4.3.2-rc2
- version/isc dhcp server/4.3.3
- version/isc dhcp server/4.3.3-b1
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/7.0
- version/debian debian linux/8.0
- version/debian debian linux/9.0
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/12.04
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/15.04
- version/canonical ubuntu linux/15.10