Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2025-40779

Опубликовано: 27 авг. 2025
Источник: debian
EPSS Низкий

Описание

If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the `kea-dhcp4` process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem. This issue affects Kea versions 2.7.1 through 2.7.9, 3.0.0, and 3.1.0.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
isc-keanot-affectedpackage

Примечания

  • https://kb.isc.org/docs/cve-2025-40779

  • Backport: https://gitlab.isc.org/isc-projects/kea/-/issues/4055

  • Introduced with: https://gitlab.isc.org/isc-projects/kea/-/commit/8f1742a2d6509c7edf5d63ed1d4eec53f9e016b0 (Kea-2.7.1)

  • https://gitlab.isc.org/isc-projects/kea/-/commit/0afd42b5dfb2e547b3c25023953892c1e578aba3 (Kea-3.1.1)

  • https://gitlab.isc.org/isc-projects/kea/-/commit/b25d7e8a81273e4099bf6c7f639ed774de2f3d08 (Kea-3.0.1)

EPSS

Процентиль: 18%
0.00057
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2025-40779

CVSS3: 7.5
ubuntu
3 месяца назад

If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the `kea-dhcp4` process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem. This issue affects Kea versions 2.7.1 through 2.7.9, 3.0.0, and 3.1.0.

redhat логотип

CVE-2025-40779

CVSS3: 7.5
redhat
3 месяца назад

If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the `kea-dhcp4` process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem. This issue affects Kea versions 2.7.1 through 2.7.9, 3.0.0, and 3.1.0.

nvd логотип

CVE-2025-40779

CVSS3: 7.5
nvd
3 месяца назад

If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the `kea-dhcp4` process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem. This issue affects Kea versions 2.7.1 through 2.7.9, 3.0.0, and 3.1.0.

redos логотип

ROS-20250930-15

CVSS3: 7.5
redos
2 месяца назад

Уязвимость kea

github логотип

GHSA-v32h-8f7r-3543

CVSS3: 7.5
github
3 месяца назад

If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the `kea-dhcp4` process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem. This issue affects Kea versions 2.7.1 through 2.7.9, 3.0.0, and 3.1.0.

EPSS

Процентиль: 18%
0.00057
Низкий