Vulnerability Details CVE-2017-3144
A vulnerability stemming from failure to properly clean up closed OMAPI connections can lead to exhaustion of the pool of socket descriptors available to the DHCP server. Affects ISC DHCP 4.1.0 to 4.1-ESV-R15, 4.2.0 to 4.2.8, 4.3.0 to 4.3.6. Older versions may also be affected but are well beyond their end-of-life (EOL). Releases prior to 4.1.0 have not been tested.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.083
EPSS Ranking 91.8%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
- http://www.securityfocus.com/bid/102726
- http://www.securitytracker.com/id/1040194
- https://access.redhat.com/errata/RHSA-2018:0158
- https://kb.isc.org/docs/aa-01541
- https://usn.ubuntu.com/3586-1/
- https://www.debian.org/security/2018/dsa-4133
- http://www.securityfocus.com/bid/102726
- http://www.securitytracker.com/id/1040194
- https://access.redhat.com/errata/RHSA-2018:0158
- https://kb.isc.org/docs/aa-01541
- https://usn.ubuntu.com/3586-1/
- https://www.debian.org/security/2018/dsa-4133
Products affected by CVE-2017-3144
-
cpe:2.3:a:isc:dhcp:4.1-esv
-
cpe:2.3:a:isc:dhcp:4.1.0
-
cpe:2.3:a:isc:dhcp:4.2.0
-
cpe:2.3:a:isc:dhcp:4.2.1
-
cpe:2.3:a:isc:dhcp:4.2.2
-
cpe:2.3:a:isc:dhcp:4.2.3
-
cpe:2.3:a:isc:dhcp:4.2.4
-
cpe:2.3:a:isc:dhcp:4.2.5
-
cpe:2.3:a:isc:dhcp:4.2.6
-
cpe:2.3:a:isc:dhcp:4.2.7
-
cpe:2.3:a:isc:dhcp:4.2.8
-
cpe:2.3:a:isc:dhcp:4.3.0
-
cpe:2.3:a:isc:dhcp:4.3.1
-
cpe:2.3:a:isc:dhcp:4.3.2
-
cpe:2.3:a:isc:dhcp:4.3.3
-
cpe:2.3:a:isc:dhcp:4.3.5
-
cpe:2.3:a:isc:dhcp:4.3.6
-
cpe:2.3:o:canonical:ubuntu_linux:14.04
-
cpe:2.3:o:canonical:ubuntu_linux:16.04
-
cpe:2.3:o:canonical:ubuntu_linux:17.10
-
cpe:2.3:o:debian:debian_linux:8.0
-
cpe:2.3:o:debian:debian_linux:9.0
-
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0
-
cpe:2.3:o:redhat:enterprise_linux_server:7.0
-
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4
-
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6
-
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4
-
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5
-
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6
-
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4
-
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6
-
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0