Описание
ELSA-2025-21006: kea security update (IMPORTANT)
[3.0.1-2]
- Fixes CVE-2025-11232
[3.0.1-1]
- New version 3.0.1
- Fixes CVE-2025-40779
Обновленные пакеты
Oracle Linux 10
Oracle Linux aarch64
kea-doc
3.0.1-2.el10_1
kea-hooks
3.0.1-2.el10_1
kea
3.0.1-2.el10_1
kea-libs
3.0.1-2.el10_1
kea-keama
3.0.1-2.el10_1
Oracle Linux x86_64
kea-doc
3.0.1-2.el10_1
kea-hooks
3.0.1-2.el10_1
kea
3.0.1-2.el10_1
kea-libs
3.0.1-2.el10_1
kea-keama
3.0.1-2.el10_1
Связанные CVE
Связанные уязвимости
If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the `kea-dhcp4` process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem. This issue affects Kea versions 2.7.1 through 2.7.9, 3.0.0, and 3.1.0.
If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the `kea-dhcp4` process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem. This issue affects Kea versions 2.7.1 through 2.7.9, 3.0.0, and 3.1.0.
If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the `kea-dhcp4` process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem. This issue affects Kea versions 2.7.1 through 2.7.9, 3.0.0, and 3.1.0.
If a DHCPv4 client sends a request with some specific options, and Kea ...
If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the `kea-dhcp4` process will abort with an assertion failure. This happens only if the client request is unicast directly to Kea; broadcast messages do not cause the problem. This issue affects Kea versions 2.7.1 through 2.7.9, 3.0.0, and 3.1.0.