CVE-2012-6700
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2012-6700
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2012-6700.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2012-6700
- Related
- Published
- 2016-04-11T15:59:02Z
- Modified
- 2025-01-14T06:04:50.377535Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The decode_search function in dhcp.c in dhcpcd 3.x does not properly free allocated memory, which allows remote DHCP servers to cause a denial of service via a crafted response.
- References
-
- http://www.debian.org/security/2016/dsa-3534
- http://www.openwall.com/lists/oss-security/2015/12/02/1
- http://www.openwall.com/lists/oss-security/2015/12/03/1
- https://bugs.launchpad.net/ubuntu/+source/dhcpcd/+bug/1517226
- https://launchpadlibrarian.net/228152582/dhcp.c.patch
- https://security-tracker.debian.org/tracker/CVE-2012-6700
Affected packages
Debian:13 / dhcpcd
Package
- Name
- dhcpcd
- Purl
- pkg:deb/debian/dhcpcd?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1:10.0.1-1
Affected versions
0.*
0.4-1
0.6-1
0.70-3
1.*
1.3.8-0.1
10.*
10.0.1-1
10.0.1-2
1:0.*
1:0.70-5
1:1.*
1:1.3.17pl2-8
1:1.3.17pl2-8.1
1:1.3.22pl4-20
1:1.3.22pl4-21
1:1.3.22pl4-21sarge1
1:1.3.22pl4-22
1:2.*
1:2.0.0-1
1:2.0.0-2
1:2.0.1-1
1:2.0.2-1
1:2.0.3-1
1:3.*
1:3.0.17-1
1:3.0.17-2
1:3.2.2-1
1:3.2.3-1
1:3.2.3-1.1
1:3.2.3-2
1:3.2.3-3
1:3.2.3-4
1:3.2.3-5
1:3.2.3-5+squeeze1
1:3.2.3-5+squeeze2
1:3.2.3-6
1:3.2.3-7
1:3.2.3-8
1:3.2.3-9
1:3.2.3-10
1:3.2.3-11