CVE Vulnerabilities

CVE-2019-6473

Reachable Assertion

Published: Oct 16, 2019 | Modified: Oct 21, 2019
CVSS 3.x
6.5
MEDIUM
Source:
NVD
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS 2.x
3.3 LOW
AV:A/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

An invalid hostname option can trigger an assertion failure in the Kea DHCPv4 server process (kea-dhcp4), causing the server process to exit. Versions affected: 1.4.0 to 1.5.0, 1.6.0-beta1, and 1.6.0-beta2.

Weakness

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

Affected Software

Name Vendor Start Version End Version
Kea Ics 1.4.0 (including) 1.5.0 (including)
Kea Ics 1.6.0-beta1 (including) 1.6.0-beta1 (including)
Kea Ics 1.6.0-beta2 (including) 1.6.0-beta2 (including)
Isc-kea Ubuntu bionic *
Isc-kea Ubuntu disco *
Isc-kea Ubuntu eoan *
Isc-kea Ubuntu groovy *
Isc-kea Ubuntu hirsute *
Isc-kea Ubuntu impish *
Isc-kea Ubuntu trusty *
Isc-kea Ubuntu xenial *

Extended Description

While assertion is good for catching logic errors and reducing the chances of reaching more serious vulnerability conditions, it can still lead to a denial of service. For example, if a server handles multiple simultaneous connections, and an assert() occurs in one single connection that causes all other connections to be dropped, this is a reachable assertion that leads to a denial of service.

Potential Mitigations

References