VDB
DEBIAN-CVE-2017-3144
DEBIAN-CVE-2017-3144
PUBLISHED
CVSS 7.5 HIGH
A vulnerability stemming from failure to properly clean up closed OMAPI connections can lead to exhaustion of the pool of socket descriptors available to the DHCP server. Affects ISC DHCP 4.1.0 to 4.1-ESV-R15, 4.2.0 to 4.2.8, 4.3.0 to 4.3.6. Older versions may also be affected but are well beyond their end-of-life (EOL). Releases prior to 4.1.0 have not been tested.
Risk Scores
CVSS v3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:12 | isc-dhcp | 0, 0, 0 |
| Debian:13 | isc-dhcp | 0, 0, 0 |
| Debian:11 | isc-dhcp | 0, 0, 0 |
Timeline
- Jan 16, 2019 CVE Published
- Apr 28, 2026 CVE Updated