Descriptiondhcpcd before 6.10.0, as used in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 and other products, mismanages option lengths, which allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow) via a malformed DHCP response, aka internal bug 26461634.
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having critical severity.
|National Vulnerability Database||SUSE|
|National Vulnerability Database|
Note from the SUSE Security TeamThe issue only affects dhcpcd 5 versions, not the older version 3 ones. SUSE Linux Enterprise 11 and older are unaffected by this problem: SUSE Bugzilla entry: 963550 [RESOLVED / INVALID] No SUSE Security Announcements cross referenced.
Status of this issue by product and package
Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification.
|SUSE Linux Enterprise Desktop 11 SP3||dhcpcd||Not affected|
|SUSE Linux Enterprise Desktop 11 SP4||dhcpcd||Not affected|
|SUSE Linux Enterprise Server 11 SP3||dhcpcd||Not affected|
|SUSE Linux Enterprise Server 11 SP4||dhcpcd||Not affected|
|SUSE Linux Enterprise Server for VMWare 11 SP3||dhcpcd||Not affected|