vulnerability
FreeBSD: VID-2040c7f5-1e3a-11e8-8ae9-0050569f0b83 (CVE-2018-5732): isc-dhcp -- Multiple vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:N/A:P) | Mar 2, 2018 | Dec 10, 2025 | Dec 10, 2025 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
Mar 2, 2018
Added
Dec 10, 2025
Modified
Dec 10, 2025
Description
ISC reports: Failure to properly bounds check a buffer used for processing DHCP options allows a malicious server (or an entity masquerading as a server) to cause a buffer overflow (and resulting crash) in dhclient by sending a response containing a specially constructed options section. A malicious client which is allowed to send very large amounts of traffic (billions of packets) to a DHCP server can eventually overflow a 32-bit reference counter, potentially causing dhcpd to crash.
Solutions
freebsd-upgrade-package-isc-dhcp44-serverfreebsd-upgrade-package-isc-dhcp44-clientfreebsd-upgrade-package-isc-dhcp43-serverfreebsd-upgrade-package-isc-dhcp43-client
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.