{"id":"CVE-2018-5733","details":"A malicious client which is allowed to send very large amounts of traffic (billions of packets) to a DHCP server can eventually overflow a 32-bit reference counter, potentially causing dhcpd to crash. Affects ISC DHCP 4.1.0 -\u003e 4.1-ESV-R15, 4.2.0 -\u003e 4.2.8, 4.3.0 -\u003e 4.3.6, 4.4.0.","modified":"2026-03-20T11:26:08.704758Z","published":"2019-01-16T20:29:00.753Z","related":["MGASA-2018-0410","SUSE-SU-2018:0810-1","SUSE-SU-2018:0810-2","SUSE-SU-2018:0812-1","openSUSE-SU-2024:10715-1"],"references":[{"type":"ADVISORY","url":"https://www.debian.org/security/2018/dsa-4133"},{"type":"ADVISORY","url":"http://www.securitytracker.com/id/1040437"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2018:0469"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2018:0483"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2018/03/msg00015.html"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/3586-1/"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/3586-2/"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20250425-0010/"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/103188"},{"type":"ADVISORY","url":"https://kb.isc.org/docs/aa-01567"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://gitlab.isc.org/isc-projects/dhcp","events":[{"introduced":"079f747eb20d40e80c65e8a984d6c50860560b3c"},{"last_affected":"8541c4fcbc6364800775234bacfe646ef16bfd38"},{"introduced":"5de62c8b34a94e66269b39c663cd222047216306"},{"last_affected":"c1bd79a15e9b689e8a18538aaedec0ab8bd04b17"},{"introduced":"0"},{"last_affected":"b39dd193dc3d189d3669866d73a87172545e2a4b"},{"introduced":"0"},{"last_affected":"9f35323a8abe2ed4bc567b2b2613fc3ef9254e8f"},{"introduced":"0"},{"last_affected":"2d5ca865b7268d2f60a485c9a50f96b7890dd51f"},{"introduced":"0"},{"last_affected":"c4a3c3ee213715ff5a3f6255001148e333029741"},{"introduced":"0"},{"last_affected":"f10f02aa92b38606897523e19ad090fc0464a955"},{"introduced":"0"},{"last_affected":"a05db3d943208ab168a9aba9117706bb58baea7c"},{"introduced":"0"},{"last_affected":"dda169525b6109935c76d2a7f0c479ff4fda0e82"},{"introduced":"0"},{"last_affected":"4f5c8255511e3600288eddfa6a4e594fde107458"},{"introduced":"0"},{"last_affected":"2a00efe8700df8bfd11881fdabeb18f33e8d9fe6"},{"introduced":"0"},{"last_affected":"331193dd54344dc74ca1987797d99bb57ba277fe"},{"introduced":"0"},{"last_affected":"240d9b62e137cad28a08893326ab66d4cd7bbb89"},{"introduced":"0"},{"last_affected":"240d9b62e137cad28a08893326ab66d4cd7bbb89"},{"introduced":"0"},{"last_affected":"f0bd8bdff79188c900a31e763377eb1d25e80eb0"},{"introduced":"0"},{"last_affected":"3a1078b6d1292305c9e784cdce97d9ae6934cc01"},{"introduced":"0"},{"last_affected":"3709b7fc844ab8384ba40a1be3cf7916168423e1"},{"introduced":"0"},{"last_affected":"54ec15cba2c5157bedf45cae9d062814e75e928e"},{"introduced":"0"},{"last_affected":"8423b4587ea3eef2a55b9ab693c828d46e238f0a"},{"introduced":"0"},{"last_affected":"9ff9a4e8131e7b5f144050b538ff866f89c98ffc"},{"introduced":"0"},{"last_affected":"a43c1faf96b8647d2a87fc0b5ef044c79cc1c852"},{"introduced":"0"},{"last_affected":"d6f132e4523d4a317f18a395ade0c4927867bc67"},{"introduced":"0"},{"last_affected":"f9eeba56095a43b985292025a2b4a46085cff2ea"},{"introduced":"0"},{"last_affected":"a185640cf1d8fd71b5c62ac4b4c9572996248b63"},{"introduced":"0"},{"last_affected":"b54c35c0c840395bc1e62dd8484eab610837d01a"},{"introduced":"0"},{"last_affected":"f615b2d9be5ebe1762de0677a1e5c151519217aa"},{"introduced":"0"},{"last_affected":"703432ad969076f6a4eb9566db5634cceeb12572"},{"introduced":"0"},{"last_affected":"5e1ef01178527149e5673002dbdc3be18046c77e"},{"introduced":"0"},{"last_affected":"b8ee38f1a50299e35c37a0eeadce30051dda7696"},{"introduced":"0"},{"last_affected":"db3e58c1515b19d6fb4f1aa46445cbbcb4261e65"},{"introduced":"0"},{"last_affected":"192a3579019c9f0c4095371d783c22efd74ba9bf"},{"introduced":"0"},{"last_affected":"034fe1d0edc30d6912718cb547f12b8c215b4cf2"},{"introduced":"0"},{"last_affected":"c57dbea3ca687b929a7bf8171c21ad9dc66461bf"},{"introduced":"0"},{"last_affected":"847b32280a9d52c3f30db4dc2ed620abbeda708c"},{"introduced":"0"},{"last_affected":"b5672a6ffffad5c2455e5d50e4c2e5ef1e99f925"},{"introduced":"0"},{"last_affected":"2a4ff20abc29fe2647de68e6a6eea8e49e6ce941"},{"introduced":"0"},{"last_affected":"075a2f45da9a3194c9ea2c72b2167d9bb5bd0c21"}],"database_specific":{"versions":[{"introduced":"4.2.0"},{"last_affected":"4.2.8"},{"introduced":"4.3.0"},{"last_affected":"4.3.6"},{"introduced":"0"},{"last_affected":"4.1-esv-NA"},{"introduced":"0"},{"last_affected":"4.1-esv-r1"},{"introduced":"0"},{"last_affected":"4.1-esv-r10"},{"introduced":"0"},{"last_affected":"4.1-esv-r10_b1"},{"introduced":"0"},{"last_affected":"4.1-esv-r10_rc1"},{"introduced":"0"},{"last_affected":"4.1-esv-r11"},{"introduced":"0"},{"last_affected":"4.1-esv-r11_b1"},{"introduced":"0"},{"last_affected":"4.1-esv-r11_rc1"},{"introduced":"0"},{"last_affected":"4.1-esv-r11_rc2"},{"introduced":"0"},{"last_affected":"4.1-esv-r12"},{"introduced":"0"},{"last_affected":"4.1-esv-r12_b1"},{"introduced":"0"},{"last_affected":"4.1-esv-r12_p1"},{"introduced":"0"},{"last_affected":"4.1-esv-r13"},{"introduced":"0"},{"last_affected":"4.1-esv-r13_b1"},{"introduced":"0"},{"last_affected":"4.1-esv-r14"},{"introduced":"0"},{"last_affected":"4.1-esv-r14_b1"},{"introduced":"0"},{"last_affected":"4.1-esv-r15"},{"introduced":"0"},{"last_affected":"4.1-esv-r2"},{"introduced":"0"},{"last_affected":"4.1-esv-r3"},{"introduced":"0"},{"last_affected":"4.1-esv-r3_b1"},{"introduced":"0"},{"last_affected":"4.1-esv-r4"},{"introduced":"0"},{"last_affected":"4.1-esv-r5"},{"introduced":"0"},{"last_affected":"4.1-esv-r5_b1"},{"introduced":"0"},{"last_affected":"4.1-esv-r5_rc1"},{"introduced":"0"},{"last_affected":"4.1-esv-r5_rc2"},{"introduced":"0"},{"last_affected":"4.1-esv-r6"},{"introduced":"0"},{"last_affected":"4.1-esv-r7"},{"introduced":"0"},{"last_affected":"4.1-esv-r8"},{"introduced":"0"},{"last_affected":"4.1-esv-r8_b1"},{"introduced":"0"},{"last_affected":"4.1-esv-r8_rc1"},{"introduced":"0"},{"last_affected":"4.1-esv-r9"},{"introduced":"0"},{"last_affected":"4.1-esv-r9_b1"},{"introduced":"0"},{"last_affected":"4.1-esv-r9_rc1"},{"introduced":"0"},{"last_affected":"4.1.0-NA"},{"introduced":"0"},{"last_affected":"4.4.0"}]}}],"versions":["v4_3_0","v4_3_1","v4_3_1b1","v4_3_1rc1","v4_3_2","v4_3_2.pre-beta","v4_3_2b1","v4_3_2rc1","v4_3_2rc2","v4_3_3","v4_3_3b1","v4_3_4","v4_3_4b1","v4_3_5","v4_3_5b1","v4_3_6","v4_3_6b1","v4_4_0","v4_4_0b1_f1"],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"4.1-esv-rc1"}]},{"events":[{"introduced":"0"},{"last_affected":"6.0"}]},{"events":[{"introduced":"0"},{"last_affected":"7.0"}]},{"events":[{"introduced":"0"},{"last_affected":"6.0"}]},{"events":[{"introduced":"0"},{"last_affected":"7.0"}]},{"events":[{"introduced":"0"},{"last_affected":"7.4"}]},{"events":[{"introduced":"0"},{"last_affected":"7.6"}]},{"events":[{"introduced":"0"},{"last_affected":"7.4"}]},{"events":[{"introduced":"0"},{"last_affected":"7.5"}]},{"events":[{"introduced":"0"},{"last_affected":"7.6"}]},{"events":[{"introduced":"0"},{"last_affected":"6.0"}]},{"events":[{"introduced":"0"},{"last_affected":"7.0"}]},{"events":[{"introduced":"0"},{"last_affected":"14.04"}]},{"events":[{"introduced":"0"},{"last_affected":"16.04"}]},{"events":[{"introduced":"0"},{"last_affected":"17.10"}]},{"events":[{"introduced":"0"},{"last_affected":"7.0"}]},{"events":[{"introduced":"0"},{"last_affected":"8.0"}]},{"events":[{"introduced":"0"},{"last_affected":"9.0"}]}],"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-5733.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}