Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-6470

There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There was also a bug in dhcpd relating to the use of this function per its documentation, but the bug in the library function prevented this from causing any harm. All releases of dhcpd from ISC contain copies of this, and other, BIND libraries in combinations that have been tested prior to release and are known to not present issues like this. Some third-party packagers of ISC software have modified the dhcpd source, BIND source, or version matchup in ways that create the crash potential. Based on reports available to ISC, the crash probability is large and no analysis has been done on how, or even if, the probability can be manipulated by an attacker. Affects: Builds of dhcpd versions prior to version 4.4.1 when using BIND versions 9.11.2 or later, or BIND versions with specific bug fixes backported to them. ISC does not have access to comprehensive version lists for all repackagings of dhcpd that are vulnerable. In particular, builds from other vendors may also be affected. Operators are advised to consult their vendor documentation.

Published

2019-11-01T23:15:10.510

Last Modified

2025-04-11T14:55:14.483

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

10.0

Impact Score

2.9

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	isc	dhcpd	< 4.4.1	Yes
Operating System	redhat	enterprise_linux	8.0	Yes
Operating System	redhat	enterprise_linux_desktop	7.0	Yes
Operating System	redhat	enterprise_linux_eus	8.1	Yes
Operating System	redhat	enterprise_linux_eus	8.2	Yes
Operating System	redhat	enterprise_linux_eus	8.4	Yes
Operating System	redhat	enterprise_linux_eus	8.6	Yes
Operating System	redhat	enterprise_linux_eus	8.8	Yes
Operating System	redhat	enterprise_linux_for_arm_64	8.0	Yes
Operating System	redhat	enterprise_linux_for_arm_64_eus	8.1_aarch64	Yes
Operating System	redhat	enterprise_linux_for_arm_64_eus	8.2_aarch64	Yes
Operating System	redhat	enterprise_linux_for_arm_64_eus	8.4_aarch64	Yes
Operating System	redhat	enterprise_linux_for_arm_64_eus	8.6_aarch64	Yes
Operating System	redhat	enterprise_linux_for_arm_64_eus	8.8_aarch64	Yes
Operating System	redhat	enterprise_linux_for_ibm_z_systems	7.0	Yes
Operating System	redhat	enterprise_linux_for_ibm_z_systems	8.0	Yes
Operating System	redhat	enterprise_linux_for_ibm_z_systems_eus	8.1_s390x	Yes
Operating System	redhat	enterprise_linux_for_ibm_z_systems_eus	8.2_s390x	Yes
Operating System	redhat	enterprise_linux_for_ibm_z_systems_eus	8.4_s390x	Yes
Operating System	redhat	enterprise_linux_for_ibm_z_systems_eus	8.6_s390x	Yes
Operating System	redhat	enterprise_linux_for_ibm_z_systems_eus	8.8_s390x	Yes
Operating System	redhat	enterprise_linux_for_power_big_endian	7.0	Yes
Operating System	redhat	enterprise_linux_for_power_little_endian	7.0	Yes
Operating System	redhat	enterprise_linux_for_power_little_endian	8.0	Yes
Operating System	redhat	enterprise_linux_for_power_little_endian_eus	8.1_ppc64le	Yes
Operating System	redhat	enterprise_linux_for_power_little_endian_eus	8.2_ppc64le	Yes
Operating System	redhat	enterprise_linux_for_power_little_endian_eus	8.4_ppc64le	Yes
Operating System	redhat	enterprise_linux_for_power_little_endian_eus	8.6_ppc64le	Yes
Operating System	redhat	enterprise_linux_for_power_little_endian_eus	8.8_ppc64le	Yes
Operating System	redhat	enterprise_linux_for_scientific_computing	7.0	Yes
Operating System	redhat	enterprise_linux_server	7.0	Yes
Operating System	redhat	enterprise_linux_server_aus	8.2	Yes
Operating System	redhat	enterprise_linux_server_aus	8.4	Yes
Operating System	redhat	enterprise_linux_server_aus	8.6	Yes
Operating System	redhat	enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions	8.1	Yes
Operating System	redhat	enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions	8.2	Yes
Operating System	redhat	enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions	8.4	Yes
Operating System	redhat	enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions	8.6	Yes
Operating System	redhat	enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions	8.8	Yes
Operating System	redhat	enterprise_linux_server_tus	8.2	Yes
Operating System	redhat	enterprise_linux_server_tus	8.4	Yes
Operating System	redhat	enterprise_linux_server_tus	8.6	Yes
Operating System	redhat	enterprise_linux_server_tus	8.8	Yes
Operating System	redhat	enterprise_linux_update_services_for_sap_solutions	8.1	Yes
Operating System	redhat	enterprise_linux_update_services_for_sap_solutions	8.2	Yes
Operating System	redhat	enterprise_linux_update_services_for_sap_solutions	8.4	Yes
Operating System	redhat	enterprise_linux_update_services_for_sap_solutions	8.6	Yes
Operating System	redhat	enterprise_linux_update_services_for_sap_solutions	8.8	Yes
Operating System	redhat	enterprise_linux_workstation	7.0	Yes
Operating System	opensuse	leap	15.0	Yes
Operating System	opensuse	leap	15.1	Yes

References

https://access.redhat.com/errata/RHSA-2019:2060 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2019:3525 Third Party Advisory ([email protected])
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=896122 Exploit, Mailing List, Third Party Advisory ([email protected])
https://lists.opensuse.org/opensuse-security-announce/2019-10/msg00048.html Mailing List, Third Party Advisory ([email protected])
https://lists.opensuse.org/opensuse-security-announce/2019-10/msg00049.html Mailing List, Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2019:2060 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2019:3525 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=896122 Exploit, Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.opensuse.org/opensuse-security-announce/2019-10/msg00048.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.opensuse.org/opensuse-security-announce/2019-10/msg00049.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)