789399 – (CVE-2020-13529) <sys-apps/systemd-{248.5,249}: DHCP ack spoofing (CVE-2020-13529)

Bug 789399 (CVE-2020-13529) - <sys-apps/systemd-{248.5,249}: DHCP ack spoofing (CVE-2020-13529)

Summary: <sys-apps/systemd-{248.5,249}: DHCP ack spoofing (CVE-2020-13529)

Status:	RESOLVED FIXED

Alias:	CVE-2020-13529

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Security

URL:	https://github.com/systemd/systemd/is...
Whiteboard:	A3 [glsa+ cve]
Keywords:

Depends on:	CVE-2021-33910
Blocks:
	Show dependency tree

Reported:	2021-05-11 08:02 UTC by Sam James
Modified:	2021-07-20 19:22 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Sam James archtester

2021-05-11 08:02:09 UTC

Description:
"An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. An attacker can forge a pair of FORCERENEW and DCHP ACK packets to reconfigure the server."

Disclosure: https://talosintelligence.com/vulnerability_reports/TALOS-2020-1142

Bug: https://github.com/systemd/systemd/issues/16774

Comment 1 GLSAMaker/CVETool Bot gentoo-dev

2021-07-20 19:21:44 UTC

This issue was resolved and addressed in
 GLSA 202107-48 at https://security.gentoo.org/glsa/202107-48
by GLSA coordinator Sam James (sam_c).

Comment 2 Sam James archtester

2021-07-20 19:22:22 UTC

All done.