Debian DSA-2551-1 : isc-dhcp - denial of service
High Nessus Plugin ID 62225
SynopsisThe remote Debian host is missing a security-related update.
DescriptionGlen Eustace discovered that the ISC DHCP server, a server for automatic IP address assignment, is not properly handling changes in the expiration times of a lease. An attacker may use this flaw to crash the service and cause denial of service conditions, by reducing the expiration time of an active IPv6 lease.
SolutionUpgrade the isc-dhcp packages.
For the stable distribution (squeeze), this problem has been fixed in version 4.1.1-P1-15+squeeze8.