CVE-2017-3144

Source
https://nvd.nist.gov/vuln/detail/CVE-2017-3144
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-3144.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2017-3144
Downstream
Related
Published
2019-01-16T20:29:00Z
Modified
2025-09-19T08:59:45.093844Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

A vulnerability stemming from failure to properly clean up closed OMAPI connections can lead to exhaustion of the pool of socket descriptors available to the DHCP server. Affects ISC DHCP 4.1.0 to 4.1-ESV-R15, 4.2.0 to 4.2.8, 4.3.0 to 4.3.6. Older versions may also be affected but are well beyond their end-of-life (EOL). Releases prior to 4.1.0 have not been tested.

References

Affected packages

Git / gitlab.isc.org/isc-projects/dhcp

Affected ranges

Type
GIT
Repo
https://gitlab.isc.org/isc-projects/dhcp
Events
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Introduced
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Introduced
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected
Last affected

Affected versions

Other

v4_3_0
v4_3_1
v4_3_1b1
v4_3_1rc1
v4_3_2
v4_3_2b1
v4_3_2rc1
v4_3_2rc2
v4_3_3
v4_3_3b1
v4_3_4
v4_3_4b1
v4_3_5
v4_3_5b1
v4_3_6
v4_3_6b1

v4_3_2.*

v4_3_2.pre-beta