CVE-2025-11232

CVE-2025-11232

Name

CVE-2025-11232

Description

To trigger the issue, three configuration parameters must have specific settings: "hostname-char-set" must be left at the default setting, which is "[^A-Za-z0-9.-]"; "hostname-char-replacement" must be empty (the default); and "ddns-qualifying-suffix" must *NOT* be empty (the default is empty). DDNS updates do not need to be enabled for this issue to manifest. A client that sends certain option content would then cause kea-dhcp4 to exit unexpectedly. This issue affects Kea versions 3.0.1 through 3.0.1 and 3.1.1 through 3.1.2.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
vendor-advisory	https://kb.isc.org/docs/cve-2025-11232
af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2025/10/29/5

Type

URI

vendor-advisory

https://kb.isc.org/docs/cve-2025-11232

af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2025/10/29/5

Match rules

Source package	Min version	Max version
kea	>= 0	<= 3.0.1
kea	>= 3.1.1	<= 3.1.2
kea	>= 2.6.0	<= 2.6.4
kea	>= 2.7.0	<= 2.7.9
kea	>= 0	<= 3.0.0
kea	>= 0	<= 3.1.0

CPE URI

Source package

Min version

Max version

kea

>= 0

<= 3.0.1

kea

>= 3.1.1

<= 3.1.2

kea

>= 2.6.0

<= 2.6.4

kea

>= 2.7.0

<= 2.7.9

kea

>= 0

<= 3.0.0

kea

>= 0

<= 3.1.0

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
kea	edge-main	3.0.2-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
kea	edge-main	2.6.3-r2	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
kea	edge-main	2.6.3-r1	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
kea	edge-main	2.6.3-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
kea	edge-main	2.6.2-r1	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
kea	edge-main	2.6.2-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
kea	edge-main	2.6.1-r1	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
kea	edge-main	1.7.2-r0	None	possibly vulnerable
kea	edge-community	1.7.2-r0	None	possibly vulnerable
kea	3.23-main	3.0.2-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
kea	3.22-main	2.6.3-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
kea	3.22-main	1.7.2-r0	None	possibly vulnerable
kea	3.21-main	2.6.2-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
kea	3.21-main	2.6.1-r1	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
kea	3.21-main	1.7.2-r0	None	possibly vulnerable
kea	3.20-main	2.4.1-r2	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
kea	3.20-main	1.7.2-r0	None	possibly vulnerable
kea	3.19-main	2.4.1-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
kea	3.19-main	1.7.2-r0	None	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages