Impact
There is a vulnerability in DHCPv6 packet parsing code that could be explored by remote attacker to craft a packet that could cause buffer overflow in a memcpy call, leading to out-of-bounds memory write that would cause dhcp6relay to crash. Dhcp6relay is a critical process and could cause dhcp relay docker to shutdown.
Patches
The fix is included in latest versions with PR [dhcp_relay] Check payload size to prevent buffer overflow in dhcpv6 option by kellyyeh · Pull Request #9740 · Azure/sonic-buildimage (github.com).
Workarounds
To fix the issue without upgrading image, replace dhcp6relay with a more recent version that contains the code fix.
Impact
There is a vulnerability in DHCPv6 packet parsing code that could be explored by remote attacker to craft a packet that could cause buffer overflow in a memcpy call, leading to out-of-bounds memory write that would cause dhcp6relay to crash. Dhcp6relay is a critical process and could cause dhcp relay docker to shutdown.
Patches
The fix is included in latest versions with PR [dhcp_relay] Check payload size to prevent buffer overflow in dhcpv6 option by kellyyeh · Pull Request #9740 · Azure/sonic-buildimage (github.com).
Workarounds
To fix the issue without upgrading image, replace dhcp6relay with a more recent version that contains the code fix.