ALAS-2012-115 --- dhcpID: oval:org.secpod.oval:def:1601271 | Date: (C)2020-11-27 (M)2021-06-02 |
Class: PATCH | Family: unix |
A denial of service flaw was found in the way the dhcpd daemon handled zero-length client identifiers. A remote attacker could use this flaw to send a specially-crafted request to dhcpd, possibly causing it to enter an infinite loop and consume an excessive amount of CPU time. Two memory leak flaws were found in the dhcpd daemon. A remote attacker could use these flaws to cause dhcpd to exhaust all available memory by sending a large number of DHCP requests
Platform: |
Amazon Linux AMI |