CVE-2017-3144
HIGH7.5EPSS 11.8%isc-dhcp - security update
發布日:2019/1/16修改日:2026/4/28
描述
A vulnerability stemming from failure to properly clean up closed OMAPI connections can lead to exhaustion of the pool of socket descriptors available to the DHCP server. Affects ISC DHCP 4.1.0 to 4.1-ESV-R15, 4.2.0 to 4.2.8, 4.3.0 to 4.3.6. Older versions may also be affected but are well beyond their end-of-life (EOL). Releases prior to 4.1.0 have not been tested.
受影響套件(2)
- Debian/isc-dhcpfrom 0, < 4.3.5-3.1
- Debian/isc-dhcpfrom 0, < 4.3.1-6+deb8u3
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |