Vulnerability CVE-2009-0692

Vulnerability Name:

CVE-2009-0692 (CCN-51320)

Assigned:

2009-07-14

Published:

2009-07-14

Updated:

2017-09-29

Summary:

Stack-based buffer overflow in the script_write_params method in client/dhclient.c in ISC DHCP dhclient 4.1 before 4.1.0p1, 4.0 before 4.0.1p1, 3.1 before 3.1.2p1, 3.0, and 2.0 allows remote DHCP servers to execute arbitrary code via a crafted subnet-mask option.

CVSS v3 Severity:

10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.8 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

9.3 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
7.3 High (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

8.3 High (REDHAT CVSS v2 Vector: AV:A/AC:L/Au:N/C:C/I:C/A:C)
6.5 Medium (REDHAT Temporal CVSS v2 Vector: AV:A/AC:L/Au:N/C:C/I:C/A:C/E:POC/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Adjacent_Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-119
CWE-130
CWE-121
CWE-121

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2009-0692

Source: NETBSD
Type: UNKNOWN
NetBSD-SA2009-010

Source: CCN
Type: HP Security Bulletin HPSBMA02554 SSRT100018
HP Insight Control for Linux, Remote Execution of Arbitrary Code, Remote Denial of Service (DoS), Remote Unauthorized Access

Source: HP
Type: UNKNOWN
SSRT100018

Source: SUSE
Type: UNKNOWN
SUSE-SA:2009:037

Source: CCN
Type: RHSA-2009-1136
Critical: dhcp security update

Source: CCN
Type: RHSA-2009-1154
Critical: dhcp security update

Source: CCN
Type: SA35785
ISC DHCP "script_write_params()" Buffer Overflow Vulnerability

Source: SECUNIA
Type: Vendor Advisory
35785

Source: SECUNIA
Type: UNKNOWN
35829

Source: SECUNIA
Type: UNKNOWN
35830

Source: SECUNIA
Type: UNKNOWN
35831

Source: SECUNIA
Type: UNKNOWN
35832

Source: SECUNIA
Type: UNKNOWN
35841

Source: SECUNIA
Type: UNKNOWN
35849

Source: SECUNIA
Type: UNKNOWN
35850

Source: SECUNIA
Type: UNKNOWN
35851

Source: SECUNIA
Type: UNKNOWN
35880

Source: SECUNIA
Type: UNKNOWN
36457

Source: SECUNIA
Type: UNKNOWN
37342

Source: CCN
Type: SA40551
HP Insight Control Suite For Linux Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
40551

Source: GENTOO
Type: UNKNOWN
GLSA-200907-12

Source: CCN
Type: SECTRACK ID: 1022548
DHCP dhclient Stack Overflow in script_write_params() Lets Remote Users Execute Arbitrary Code

Source: SLACKWARE
Type: UNKNOWN
SSA:2009-195-01

Source: CCN
Type: ASA-2009-289
dhcp security update (RHSA-2009-1154)

Source: DEBIAN
Type: UNKNOWN
DSA-1833

Source: DEBIAN
Type: DSA-1833
dhcp3 -- several vulnerabilities

Source: CCN
Type: GLSA-200907-12
ISC DHCP: dhcpclient Remote execution of arbitrary code

Source: CCN
Type: IBM Internet Security Systems Protection Alert
ISC DHCP Client Buffer Overflow

Source: CCN
Type: US-CERT VU#410676
ISC DHCP dhclient stack buffer overflow

Source: CERT-VN
Type: US Government Resource
VU#410676

Source: MANDRIVA
Type: UNKNOWN
MDVSA-2009:151

Source: OSVDB
Type: UNKNOWN
55819

Source: CCN
Type: OSVDB ID: 55819
ISC DHCP client/dhclient.c script_write_params() Function Remote Overflow

Source: REDHAT
Type: UNKNOWN
RHSA-2009:1136

Source: REDHAT
Type: UNKNOWN
RHSA-2009:1154

Source: BID
Type: UNKNOWN
35668

Source: CCN
Type: BID-35668
ISC DHCP 'dhclient' 'script_write_params()' Stack Buffer Overflow Vulnerability

Source: SECTRACK
Type: UNKNOWN
1022548

Source: CCN
Type: USN-803-1
dhcp vulnerability

Source: UBUNTU
Type: UNKNOWN
USN-803-1

Source: CCN
Type: USN-803-2
Dhcp vulnerability

Source: VUPEN
Type: UNKNOWN
ADV-2009-1891

Source: VUPEN
Type: UNKNOWN
ADV-2010-1796

Source: CONFIRM
Type: UNKNOWN
https://bugzilla.redhat.com/show_bug.cgi?id=507717

Source: XF
Type: UNKNOWN
dhcp-client-overflow(51320)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:10758

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:5941

Source: CONFIRM
Type: UNKNOWN
https://www.isc.org/downloadables/12

Source: CCN
Type: Internet Systems Consortium Web site
DHCP Stack Overflow in 'dhclient' script_write_params()

Source: CONFIRM
Type: Patch, Vendor Advisory
https://www.isc.org/node/468

Source: FEDORA
Type: UNKNOWN
FEDORA-2009-8344

Source: FEDORA
Type: UNKNOWN
FEDORA-2009-9075

Source: SUSE
Type: SUSE-SA:2009:037
dhcp-client security problem

Vulnerable Configuration:

Configuration 1:

cpe:/a:isc:dhcp:2.0:*:*:*:*:*:*:*

OR cpe:/a:isc:dhcp:3.0:*:*:*:*:*:*:*

OR cpe:/a:isc:dhcp:3.1:*:*:*:*:*:*:*

OR cpe:/a:isc:dhcp:4.0:*:*:*:*:*:*:*

OR cpe:/a:isc:dhcp:4.1.0:-:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:4:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

Configuration CCN 1:

cpe:/a:isc:dhcp:4.0:*:*:*:*:*:*:*

OR cpe:/a:isc:dhcp:3.0:*:*:*:*:*:*:*

OR cpe:/a:isc:dhcp:3.1:*:*:*:*:*:*:*

AND

cpe:/o:gentoo:linux:-:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::ws:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::as:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::desktop:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*

OR cpe:/o:novell:linux_desktop:9:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

OR cpe:/a:mandrakesoft:mandrake_multi_network_firewall:2.0:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:6.06::lts:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0::x86_64:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0::x86_64:*:*:*:*:*

OR cpe:/o:suse:novell_linux_pos:9:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.0:x86_64:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.0:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.1:x86_64:*:*:*:*:*:*

OR cpe:/a:novell:open_enterprise_server:-:*:*:*:*:*:*:*

OR cpe:/o:opensuse:opensuse:10.3:*:*:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:2008.1:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:8.04::lts:*:*:*:*:*

OR cpe:/o:opensuse:opensuse:11.0:*:*:*:*:*:*:*

OR cpe:/o:novell:suse_linux_enterprise_server:10:sp2:itanium_ia64:*:*:*:*:*

OR cpe:/o:mandriva:linux:2009.0:*:*:*:*:*:*:*

OR cpe:/o:mandriva:linux:2009.0:-:x86_64:*:*:*:*:*

OR cpe:/o:canonical:ubuntu:8.10:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:5.0:*:*:*:*:*:*:*

OR cpe:/o:mandriva:linux:2009.1:*:*:*:*:*:*:*

OR cpe:/o:mandriva:linux:2009.1:*:*:*:x86_64:*:*:*

OR cpe:/o:redhat:enterprise_linux:4.8.z:*:es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4.8.z:*:as:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20090692	V	CVE-2009-0692	2022-05-20
oval:org.opensuse.security:def:42291	P	Security update for expat (Important)	2022-01-25
oval:org.opensuse.security:def:31372	P	Security update for MozillaFirefox (Important) (in QA)	2022-01-14
oval:org.opensuse.security:def:26226	P	Security update for openexr (Important)	2022-01-12
oval:org.opensuse.security:def:31371	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:32250	P	Security update for log4j (Important)	2021-12-17
oval:org.opensuse.security:def:32243	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)	2021-12-14
oval:org.opensuse.security:def:31720	P	Security update for xorg-x11-server (Important)	2021-12-14
oval:org.opensuse.security:def:31718	P	Security update for MozillaFirefox (Important)	2021-12-12
oval:org.opensuse.security:def:31315	P	Security update for clamav (Moderate)	2021-12-01
oval:org.opensuse.security:def:26166	P	Security update for php74 (Moderate)	2021-11-18
oval:org.opensuse.security:def:33035	P	Security update for transfig (Important)	2021-10-29
oval:org.opensuse.security:def:26152	P	Security update for postgresql10 (Important)	2021-10-20
oval:org.opensuse.security:def:26145	P	Security update for the Linux Kernel (Important)	2021-10-12
oval:org.opensuse.security:def:32187	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-09-23
oval:org.opensuse.security:def:26113	P	Security update for mysql-connector-java (Moderate)	2021-08-30
oval:org.opensuse.security:def:32171	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-08-25
oval:org.opensuse.security:def:31671	P	Security update for openssl (Important)	2021-08-24
oval:org.opensuse.security:def:31663	P	Security update for djvulibre (Important)	2021-08-05
oval:org.opensuse.security:def:31661	P	Security update for webkit2gtk3 (Important)	2021-08-03
oval:org.opensuse.security:def:31239	P	Security update for dbus-1 (Important)	2021-08-02
oval:org.opensuse.security:def:32157	P	Security update for qemu (Important)	2021-07-29
oval:org.opensuse.security:def:31223	P	Security update for systemd (Important)	2021-07-21
oval:org.opensuse.security:def:26086	P	Security update for libsolv (Important)	2021-06-28
oval:org.opensuse.security:def:42092	P	Security update for salt (Critical)	2021-06-21
oval:org.opensuse.security:def:32127	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-06-18
oval:org.opensuse.security:def:29385	P	Security update for webkit2gtk3 (Important)	2021-06-17
oval:org.opensuse.security:def:36111	P	dhcp-4.2.4.P2-0.22.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36392	P	dhcp-devel-4.2.4.P2-0.22.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42518	P	dhcp-4.2.4.P2-0.22.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:32105	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2021-06-04
oval:org.opensuse.security:def:26064	P	Security update for libwebp (Critical)	2021-06-02
oval:org.opensuse.security:def:31615	P	Security update for cups (Important)	2021-04-30
oval:org.opensuse.security:def:31165	P	Security update for gdm (Important)	2021-04-28
oval:org.opensuse.security:def:31154	P	Security update for sudo (Important)	2021-04-20
oval:org.opensuse.security:def:29349	P	Security update for xen (Important)	2021-04-20
oval:org.opensuse.security:def:31153	P	Security update for xen (Important)	2021-04-19
oval:org.opensuse.security:def:31607	P	Security update for qemu (Important)	2021-04-16
oval:org.opensuse.security:def:32066	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)	2021-04-07
oval:org.opensuse.security:def:31363	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)	2021-03-17
oval:org.opensuse.security:def:31352	P	Security update for openldap2 (Important)	2021-03-03
oval:org.opensuse.security:def:31351	P	Security update for grub2 (Important)	2021-03-02
oval:org.opensuse.security:def:33074	P	Security update for jasper (Important)	2021-02-16
oval:org.opensuse.security:def:26210	P	Security update for MozillaFirefox (Important)	2021-01-12
oval:org.opensuse.security:def:31569	P	Security update for clamav (Important)	2020-12-22
oval:org.opensuse.security:def:31091	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2020-12-07
oval:org.opensuse.security:def:35537	P	dhcp-3.1.3.ESV-0.3.38 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35685	P	dhcp-4.2.3.P2-0.7.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:41944	P	dhcp-3.1.3.ESV-0.3.38 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35884	P	dhcp-4.2.4.P2-0.16.15 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:31937	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:31819	P	Security update for augeas (Moderate)	2020-12-01
oval:org.opensuse.security:def:31781	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:32502	P	dhcp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25660	P	Security update for sane-backends (Important)	2020-12-01
oval:org.opensuse.security:def:25510	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:25578	P	Security update for python-ipaddress (Important)	2020-12-01
oval:org.opensuse.security:def:25718	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:32694	P	krb5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33398	P	Security update for cobbler (Important)	2020-12-01
oval:org.opensuse.security:def:31017	P	Security update for java-1_7_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:28217	P	Security update for libquicktime (Moderate)	2020-12-01
oval:org.opensuse.security:def:26518	P	OpenEXR on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26378	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:27074	P	PolicyKit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31938	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:31795	P	Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:31805	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31868	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:31973	P	Security update for jakarta-taglibs-standard (Important)	2020-12-01
oval:org.opensuse.security:def:25661	P	Security update for opensc (Low)	2020-12-01
oval:org.opensuse.security:def:25638	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25662	P	Security update for apache-commons-httpclient (Important)	2020-12-01
oval:org.opensuse.security:def:25767	P	Security update for DirectFB (Important)	2020-12-01
oval:org.opensuse.security:def:32716	P	libltdl7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33437	P	Security update for dhcp-client	2020-12-01
oval:org.opensuse.security:def:28274	P	Security update for mozilla-nss (Moderate)	2020-12-01
oval:org.opensuse.security:def:26571	P	kdelibs3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26392	P	Security update for MozillaThunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:27109	P	dhcp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25088	P	Security update for libssh (Important)	2020-12-01
oval:org.opensuse.security:def:31949	P	Security update for grub2 (Important)	2020-12-01
oval:org.opensuse.security:def:31887	P	Security update for emacs (Important)	2020-12-01
oval:org.opensuse.security:def:31961	P	Security update for guile (Low)	2020-12-01
oval:org.opensuse.security:def:31907	P	Security update for freetype2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32611	P	unzip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25672	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:25719	P	Security update for ipmitool (Important)	2020-12-01
oval:org.opensuse.security:def:25813	P	Security update for libssh (Moderate)	2020-12-01
oval:org.opensuse.security:def:25806	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26502	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:28358	P	Security update for postgresql94 (Important)	2020-12-01
oval:org.opensuse.security:def:26620	P	openssh on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26717	P	gzip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25089	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:32023	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:31944	P	Security update for gnutls (Moderate)	2020-12-01
oval:org.opensuse.security:def:32017	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:31929	P	Security update for glib2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32650	P	dhcp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25941	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25736	P	Security update for mozilla-nspr, mozilla-nss (Moderate)	2020-12-01
oval:org.opensuse.security:def:25776	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:25866	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25820	P	Security update for xerces-c (Moderate)	2020-12-01
oval:org.opensuse.security:def:26537	P	dhcp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28510	P	Security update for openssl1 (Important)	2020-12-01
oval:org.opensuse.security:def:26659	P	NetworkManager on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27355	P	wget-openssl1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25100	P	Security update for qemu (Important)	2020-12-01
oval:org.opensuse.security:def:32031	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25942	P	Security update for gstreamer-0_10-plugins-bad (Moderate)	2020-12-01
oval:org.opensuse.security:def:25864	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25860	P	Security update for bash (Moderate)	2020-12-01
oval:org.opensuse.security:def:25915	P	Security update for libosip2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26012	P	Security update for mariadb (Moderate)	2020-12-01
oval:org.opensuse.security:def:28563	P	Security update for inkscape	2020-12-01
oval:org.opensuse.security:def:26673	P	bind on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27390	P	dhcp-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25236	P	Security update for libexif (Moderate)	2020-12-01
oval:org.opensuse.security:def:25164	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:32809	P	xorg-x11-Xvnc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25953	P	Security update for gcc48 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25945	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:26011	P	Security update for gwenhywfar (Moderate)	2020-12-01
oval:org.opensuse.security:def:25954	P	Security update for libvirt (Moderate)	2020-12-01
oval:org.opensuse.security:def:26650	P	xdg-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31459	P	Security update for postgresql94 (Important)	2020-12-01
oval:org.opensuse.security:def:28612	P	Security update for Xen	2020-12-01
oval:org.opensuse.security:def:28711	P	Security update for icu	2020-12-01
oval:org.opensuse.security:def:25237	P	Security update for libvpx (Moderate)	2020-12-01
oval:org.opensuse.security:def:25292	P	Security update for libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:32307	P	Security update for python (Important)	2020-12-01
oval:org.opensuse.security:def:32848	P	dhcp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27927	P	Security update for GraphicsMagick (Important)	2020-12-01
oval:org.opensuse.security:def:26017	P	Security update for gnome-shell (Low)	2020-12-01
oval:org.opensuse.security:def:26002	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:25968	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:26685	P	dhcp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31463	P	Security update for postgresql94 (Moderate)	2020-12-01
oval:org.opensuse.security:def:28651	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:25248	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25373	P	Security update for libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:32394	P	Security update for transfig (Moderate)	2020-12-01
oval:org.opensuse.security:def:32292	P	Security update for postgresql94 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32397	P	Security update for unzip (Moderate)	2020-12-01
oval:org.opensuse.security:def:27928	P	Security update for GraphicsMagick (Important)	2020-12-01
oval:org.opensuse.security:def:31577	P	Security update for sudo (Important)	2020-12-01
oval:org.opensuse.security:def:31437	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31520	P	Security update for rpcbind (Moderate)	2020-12-01
oval:org.opensuse.security:def:28667	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:25434	P	Security update for dovecot22 (Important)	2020-12-01
oval:org.opensuse.security:def:25312	P	Security update for libsolv (Moderate)	2020-12-01
oval:org.opensuse.security:def:25430	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:32550	P	libexif on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32331	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:27939	P	Security update for GraphicsMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:26237	P	Security update for mariadb-100 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26848	P	yast2-core on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31578	P	Security update for supportutils (Moderate)	2020-12-01
oval:org.opensuse.security:def:31825	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:25435	P	Security update for ghostscript (Important)	2020-12-01
oval:org.opensuse.security:def:25440	P	Security update for python-xdg (Moderate)	2020-12-01
oval:org.opensuse.security:def:25514	P	Security update for mariadb-connector-c (Important)	2020-12-01
oval:org.opensuse.security:def:32606	P	syslog-ng on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32353	P	Security update for squid3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31005	P	Security update for java-1_6_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:28003	P	security update for xen (Moderate)	2020-12-01
oval:org.opensuse.security:def:26283	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26290	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:26883	P	dhcp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31589	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:31763	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:31759	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:32463	P	Security update for xorg-x11-libXpm (Moderate)	2020-12-01
oval:org.opensuse.security:def:25446	P	Security update for nfs-utils (Moderate)	2020-12-01
oval:org.opensuse.security:def:25521	P	Security update for libexif (Moderate)	2020-12-01
oval:org.opensuse.security:def:25665	P	Security update for libqt5-qtbase (Important)	2020-12-01
oval:org.opensuse.security:def:32655	P	emacs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32760	P	opie on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31006	P	Security update for java-1_6_0-ibm (Moderate)	2020-12-01
oval:org.opensuse.security:def:28133	P	Security update for jasper (Important)	2020-12-01
oval:org.opensuse.security:def:26367	P	Security update for MozillaThunderbird (Moderate)	2020-12-01
oval:org.opensuse.security:def:26339	P	Security update for openjpeg2 (Important)	2020-12-01
oval:org.opensuse.security:def:26436	P	Security update for pdns-recursor (Moderate)	2020-12-01
oval:org.mitre.oval:def:12418	P	USN-803-2 -- dhcp3 vulnerability	2014-07-07
oval:org.mitre.oval:def:13332	P	USN-803-1 -- dhcp3 vulnerability	2014-06-30
oval:org.mitre.oval:def:12854	P	DSA-1833-1 dhcp3 -- several	2014-06-23
oval:org.mitre.oval:def:8056	P	DSA-1833 dhcp3 -- several vulnerabilities	2014-06-23
oval:org.mitre.oval:def:13715	P	DSA-1833-2 dhcp3 -- several	2014-06-23
oval:org.mitre.oval:def:10758	V	Stack-based buffer overflow in the script_write_params method in client/dhclient.c in ISC DHCP dhclient 4.1 before 4.1.0p1, 4.0 before 4.0.1p1, 3.1 before 3.1.2p1, 3.0, and 2.0 allows remote DHCP servers to execute arbitrary code via a crafted subnet-mask option.	2013-04-29
oval:org.mitre.oval:def:5941	V	DHCP dhclient Stack Overflow in script_write_params() Lets Remote Users Execute Arbitrary Code	2010-01-11
oval:com.redhat.rhsa:def:20091136	P	RHSA-2009:1136: dhcp security update (Critical)	2009-07-14
oval:com.redhat.rhsa:def:20091154	P	RHSA-2009:1154: dhcp security update (Critical)	2009-07-14
oval:org.debian:def:1833	V	several vulnerabilities	2009-07-14

BACK