Releases128
Frequency1 month 6 days
Last Release
Stars109
Framework for network configuration

CVE History

CVEAffectedPublishedCVSS v3CVSS v2
8.8 HIGH

Passing of unsanitized strings from DHCP replies into the wicked dhcp client before wicked 0.6.79 could be used by attackers operating a malicious DHCP server to execute code on the local machine.

<= 0.6.557.5 HIGH5 MEDIUM

An ni_dhcp4_fsm_process_dhcp4_packet memory leak in openSUSE wicked 0.6.55 and earlier allows network attackers to cause a denial of service by sending DHCP4 packets with a different client-id.

<= 0.6.557.5 HIGH5 MEDIUM

An ni_dhcp4_parse_response memory leak in openSUSE wicked 0.6.55 and earlier allows network attackers to cause a denial of service by sending DHCP4 packets without a message type option.