CVE-2026-56116
MediumCVSS 6.5Exploitation Probability (EPSS)
Low risk9th percentile — higher than 9% of all known CVEs
Summary
A memory leak vulnerability in dhcpcd through version 10.3.2, fixed in commit 708b4a5, exists in IPv6 Router Advertisement route information handling. An unauthenticated same-link attacker can cause denial of service by sending crafted Router Advertisements, leading to linear memory exhaustion and daemon crash.
Risk Assessment
An attacker can crash the DHCP service on the device, preventing clients from obtaining IP addresses and other network configurations, leading to network disruptions.
Recommendation
Immediately update dhcpcd to a version containing the fix (commit 708b4a5) or later. If updating is not possible, restrict trusted sources of IPv6 Router Advertisements using a firewall.
Original NVD description (English source)
dhcpcd through 10.3.2, fixed in commit 708b4a5, contains a memory leak vulnerability in the IPv6 Router Advertisement route information handling that allows an unauthenticated same-link attacker to cause denial of service by sending crafted Router Advertisements. Attackers can repeatedly send Router Advertisements containing Route Information options with a lifetime of zero, triggering unfreed allocations in routeinfo_findalloc() that cause linear memory exhaustion and eventual daemon crash.

