dhclient
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | A standalone DHCP client from the dhcp package |
| Version | 4.4.3.P1-3 [extra] |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-2004 | 4.4.2-2 | 4.4.2.P1-1 | High | Fixed | |
| AVG-648 | 4.4.0-1 | 4.4.1-1 | High | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2021-25217 | AVG-2004 | High | Yes | Arbitrary code execution | A buffer overrun in the lease file parsing code can be used to exploit a common vulnerability shared by dhcpd and dhclient before version 4.4.2-P1. |
| CVE-2018-5732 | AVG-648 | High | Yes | Denial of service | An out-of-bound memory access flaw was found in the way dhclient processed a DHCP response packet. A malicious DHCP server could potentially use this flaw... |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 01 Jun 2021 | ASA-202106-10 | AVG-2004 | High | arbitrary code execution |
| 05 Mar 2018 | ASA-201803-3 | AVG-648 | High | denial of service |