CVE: CVE-2011-0413 CERT: VU#686084 Posting date: 26 Jan 2011 Program Impacted: DHCP Versions affected: 4.0.x-4.2.x Severity: Medium Exploitable: remotely Description: When the DHCPv6 server code processes a message for an address that was previously declined and internally tagged as abandoned it can trigger an assert failure resulting in the server crashing. This could be used to crash DHCPv6 servers remotely. This issue only affects DHCPv6 servers. DHCPv4 servers are unaffected. Solution: Upgrade to 4.1.2-P1, 4.1-ESV-R1, or 4.2.1b1 http://www.isc.org/software/dhcp/advisories/cve-2011-0413 https://bugzilla.redhat.com/show_bug.cgi?id=672755
It's not obvious whether the crash is exploitable, so assuming it is. The vulnerability is present only in 4.x series, that are still hard masked.
Based on http://secunia.com/advisories/43006/ it's only DoS.
dhcp-4.2.1 now in the tree and all other dhcp-4.x ebuilds punted. since this is still masked, i'll close out the bug.
