22 matches found
MiracleLinux 7 : dhcp-4.2.5-58.1.0.1.el7.AXS7 (AXSA:2018-2570:01)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2018-2570:01 advisory. It was found that the DHCP daemon did not properly clean up closed OMAPI connections in certain cases. A remote attacker able to connect to the OMAPI port...
K42266856: DHCP vulnerability CVE-2017-3144
Security Advisory Description A vulnerability stemming from failure to properly clean up closed OMAPI connections can lead to exhaustion of the pool of socket descriptors available to the DHCP server. Affects ISC DHCP 4.1.0 to 4.1-ESV-R15, 4.2.0 to 4.2.8, 4.3.0 to 4.3.6. Older versions may also b...
Huawei EulerOS: Security Advisory for dhcp (EulerOS-SA-2018-1241)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for dhcp (EulerOS-SA-2018-1035)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-3144
A vulnerability stemming from failure to properly clean up closed OMAPI connections can lead to exhaustion of the pool of socket descriptors available to the DHCP server. Affects ISC DHCP 4.1.0 to 4.1-ESV-R15, 4.2.0 to 4.2.8, 4.3.0 to 4.3.6. Older versions may also be affected but are well beyond...
CVE-2017-3144
ISC DHCP vulnerability CVE-2017-3144 arises from failure to properly clean up closed OMAPI connections, which can exhaust the DHCP server’s socket descriptor pool and cause a denial of service. Affected releases include ISC DHCP 4.1.0 to 4.1-ESV-R15, 4.2.0 to 4.2.8, and 4.3.0 to 4.3.6; older vers...
CVE-2017-3144 Failure to properly clean up closed OMAPI connections can exhaust available sockets
A vulnerability stemming from failure to properly clean up closed OMAPI connections can lead to exhaustion of the pool of socket descriptors available to the DHCP server. Affects ISC DHCP 4.1.0 to 4.1-ESV-R15, 4.2.0 to 4.2.8, 4.3.0 to 4.3.6. Older versions may also be affected but are well beyond...
EulerOS Virtualization 2.5.0 : dhcp (EulerOS-SA-2018-1241)
According to the version of the dhcp packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - It was found that the DHCP daemon did not properly clean up closed OMAPI connections in certain cases. A remote attacker able to conne...
Security Bulletin: A vulnerability in DHCP affects PowerKVM
Summary PowerKVM is affected by a vulnerability in DHCP. IBM has now addressed this vulnerability. Vulnerability Details CVEID: CVE-2017-3144 DESCRIPTION: ISC DHCP is vulnerable to a denial of service, caused by the failure to properly clean up closed OMAPI connections. A remote attacker could...
Amazon Linux 2 : dhcp (ALAS-2018-963)
Omapi code doesn't free socket descriptors when empty message is received allowing denial-of-service It was found that the DHCP daemon did not properly clean up closed OMAPI connections in certain cases. A remote attacker able to connect to the OMAPI port could use this flaw to exhaust file...
ISC DHCP Server OMAPI Disconnect Denial Of Service (CVE-2017-3144) - Ver2
A denial-of-service vulnerability exists in ISC DHCP. Successful exploitation of this vulnerability would allow a remote attacker to create a denial of service condition on the affected system...
GLSA-201804-05 : ISC DHCP: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201804-05 ISC DHCP: Multiple vulnerabilities Multiple vulnerabilities have been discovered in ISC DHCP. Please review the CVE identifiers referenced below for details. Impact : Remote attackers could execute arbitrary code, cause ...
Debian: Security Advisory (DSA-4133-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 14.04 LTS / 16.04 LTS : DHCP vulnerabilities (USN-3586-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3586-1 advisory. Konstantin Orekhov discovered that the DHCP server incorrectly handled a large number of concurrent TCP sessions. A remote attacker could...
SUSE SLED12 / SLES12 Security Update : dhcp (SUSE-SU-2018:0532-1)
This update for dhcp fixes several issues. This security issue was fixed : - CVE-2017-3144: OMAPI code didn't free socket descriptors when empty message is received allowing DoS bsc1076119. The update package also includes non-security fixes. See advisory for details. Note that Tenable Network...
openSUSE Security Update : dhcp (openSUSE-2018-207)
This update for dhcp fixes several issues. This security issue was fixed : - CVE-2017-3144: OMAPI code didn't free socket descriptors when empty message is received allowing DoS bsc1076119. These non-security issues were fixed : - Optimized if and when DNS client context and ports are initted...
SUSE-SU-2018:0532-1 Security update for dhcp
This update for dhcp fixes several issues. This security issue was fixed: - CVE-2017-3144: OMAPI code didn't free socket descriptors when empty message is received allowing DoS bsc1076119. These non-security issues were fixed: - Optimized if and when DNS client context and ports are initted...
SUSE SLES11 Security Update : dhcp (SUSE-SU-2018:0444-1)
This update for dhcp fixes several issues. This security issue was fixed : - CVE-2017-3144: OMAPI code didn't free socket descriptors when empty message is received allowing DoS bsc1076119 The update package also includes non-security fixes. See advisory for details. Note that Tenable Network...
CentOS 7 : dhcp (CESA-2018:0158)
An update for dhcp is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...
Scientific Linux Security Update : dhcp on SL7.x x86_64 (20180125)
Security Fixes : - It was found that the DHCP daemon did not properly clean up closed OMAPI connections in certain cases. A remote attacker able to connect to the OMAPI port could use this flaw to exhaust file descriptors in the DHCP daemon, leading to a denial of service in the OMAPI...