| Release | Version |
|---|---|
| stretch | 1.1.0-1 |
| bullseye | 1.5.0-2 |
| sid | 1.5.0-2 |
| Bug | stretch | bullseye | sid | Description |
|---|---|---|---|---|
| CVE-2019-6474 | vulnerable | vulnerable | vulnerable | An oversight when validating incoming client requests can lead to a situation where the Kea server will exit when trying to restart |
| CVE-2019-6473 | vulnerable | vulnerable | vulnerable | An invalid hostname option can cause the kea-dhcp4 server to terminate |
| CVE-2019-6472 | vulnerable | vulnerable | vulnerable | A packet containing a malformed DUID can cause the kea-dhcp6 server to terminate |
| Bug | Description |
|---|---|
| CVE-2018-5739 | An extension to hooks capabilities which debuted in Kea 1.4.0 introduc ... |
| CVE-2015-8373 | The kea-dhcp4 and kea-dhcp6 servers 0.9.2 and 1.0.0-beta in ISC Kea, w ... |