Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Ubuntu 18.04 LTS: Critical Denial of Service Flaw in Kea DHCP USN-7759-1

ubuntu
Calendar Grey September 23, 2025
Dist Ubuntu Esm H88
Kea DHCP server vulnerability on Ubuntu may lead to crashes due to maliciously constructed network packets. Ensure all systems are updated to mitigate potential denial of service risks.
Kea DHCP could be made to crash if it received specially crafted network traffic.

Summary

Kea DHCP could be made to crash if it received specially crafted network

traffic.

Software Description:

- isc-kea: Standards-based DHCP server

Details:

It was discovered that Kea DHCP did not correctly handle invalid hostnames.

A remote attacker could possibly use this issue to cause a denial of

service.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS
  kea-admin                       1.1.0-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  kea-common                      1.1.0-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  kea-dhcp-ddns-server            1.1.0-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  kea-dhcp4-server                1.1.0-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  kea-dhcp6-server                1.1.0-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro

Ubuntu 16.04 LTS
  kea-admin                       1.0.0-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  kea-common                      1.0.0-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  kea-dhcp-ddns-server            1.0.0-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  kea-dhcp4-server                1.0.0-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro
  kea-dhcp6-server                1.0.0-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro

After a standard system update you may need to restart Kea DHCP server
instances to make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7759-1

CVE-2019-6473

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7759-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here