Double-deletion of the released addresses in the dhcpv6 code leading to crash and possible DoS. This issue was introduced by a commit which fixes a bug in the ISC heap library.
Created dhcp tracking bugs for this issue: Affects: fedora-all [bug 1708642]
This flaw is in the dhcp server code (binary package dhcp), client-side code is not affected.
Upstream patch: https://source.isc.org/cgi-bin/gitweb.cgi?p=dhcp.git;a=commit;h=abacf8ad0d8844685e5cd76645a34ef2b8da3253
External References: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=896122
Another reference: https://bugzilla.redhat.com/show_bug.cgi?id=1641246
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:2060 https://access.redhat.com/errata/RHSA-2019:2060
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2019-6470
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2019:3525 https://access.redhat.com/errata/RHSA-2019:3525