CVE-2017-3144

Priority
Description
A vulnerability stemming from failure to properly clean up closed OMAPI
connections can lead to exhaustion of the pool of socket descriptors
available to the DHCP server. Affects ISC DHCP 4.1.0 to 4.1-ESV-R15, 4.2.0
to 4.2.8, 4.3.0 to 4.3.6. Older versions may also be affected but are well
beyond their end-of-life (EOL). Releases prior to 4.1.0 have not been
tested.
Notes
mdeslaurDoS over OMAPI port only, see ISC kb article
for workarounds, or properly limit access to ports
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):needs-triage
Ubuntu 14.04 ESM (Trusty Tahr):released (4.2.4-7ubuntu12.12)
Ubuntu 16.04 LTS (Xenial Xerus):released (4.3.3-5ubuntu12.9)
Ubuntu 18.04 LTS (Bionic Beaver):released (4.3.5-3ubuntu5)
Ubuntu 20.04 LTS (Focal Fossa):released (4.3.5-3ubuntu5)
Ubuntu 20.10 (Groovy Gorilla):released (4.3.5-3ubuntu5)
Patches:
Upstream:https://source.isc.org/cgi-bin/gitweb.cgi?p=dhcp.git;a=commit;h=1a6b62fe17a42b00fa234d06b6dfde3d03451894
More Information

Updated: 2020-09-09 21:33:03 UTC (commit b67d7d8b03f173f825cd706df5bd078bca500b0e)