A vulnerability in dhcpcd can lead to a Denial of Service condition.
|Package||net-misc/dhcpcd on all architectures|
|Affected versions||< 6.4.3|
|Unaffected versions||>= 6.4.3|
dhcpcd is a fully featured, yet light weight RFC2131 compliant DHCP client.
A vulnerability has been discovered in dhcpcd. A malicious dhcp server can set flags as part of the dhcp reply that can cause a Denial of Service condition.
A remote attacker can cause a Denial of Service condition.
There is no known workaround at this time.
All dhcpcd users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=net-misc/dhcpcd-6.4.3"
September 03, 2014
September 03, 2014: 1