CVE-2018-5739— ISC Kea DHCP 安全漏洞
新しい脆弱性情報の通知を購読するログインして購読
I. CVE-2018-5739の基本情報
脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗ 高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。
脆弱性タイトル
Failure to release memory may exhaust system resources
ソース: NVD (National Vulnerability Database)
脆弱性説明
An extension to hooks capabilities which debuted in Kea 1.4.0 introduced a memory leak for operators who are using certain hooks library facilities. In order to support multiple requests simultaneously, Kea 1.4 added a callout handle store but unfortunately the initial implementation of this store does not properly free memory in every case. Hooks which make use of query4 or query6 parameters in their callouts can leak memory, resulting in the eventual exhaustion of available memory and subsequent failure of the server process. Affects Kea DHCP 1.4.0.
ソース: NVD (National Vulnerability Database)
CVSS情報
N/A
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
N/A
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
ISC Kea DHCP 安全漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
ISC Kea DHCP是美国Internet Systems Consortium公司的一款开源的DHCP服务器。该产品支持IPV4和IPV6地址的分配,并支持动态DNS更新。 ISC Kea DHCP 1.4.0版本中存在安全漏洞,该漏洞源于程序在临时存储客户端网络数据包后没有释放内存。攻击者可通过发送大量请求利用该漏洞造成DHCP服务器功能无法使用(内存耗尽)。
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)
影響を受ける製品
II. CVE-2018-5739の公開POC
| # | POC説明 | ソースリンク | Shenlongリンク |
|---|
AI生成POCプレミアム
公開POCは見つかりませんでした。
ログインしてAI POCを生成III. CVE-2018-5739のインテリジェンス情報
お願いします ログイン より多くのインテリジェンス情報を見る
Same Patch Batch · ISC · 2019-01-16 · 18 CVEs total
| CVE-2017-3143 | An error in TSIG authentication can permit unauthorized dynamic updates | |
| CVE-2018-5741 | Update policies krb5-subdomain and ms-subdomain do not enforce controls promised in their | |
| CVE-2018-5740 | A flaw in the "deny-answer-aliases" feature can cause an assertion failure in named | |
| CVE-2018-5738 | Some versions of BIND can improperly permit recursive query service to unauthorized client | |
| CVE-2018-5737 | BIND 9.12's serve-stale implementation can cause an assertion failure in rbtdb.c or other | |
| CVE-2018-5734 | A malformed request can trigger an assertion failure in badcache.c | |
| CVE-2018-5733 | A malicious client can overflow a reference counter in ISC dhcpd | |
| CVE-2017-3145 | Improper fetch cleanup sequencing in the resolver can cause named to crash | |
| CVE-2017-3144 | Failure to properly clean up closed OMAPI connections can exhaust available sockets | |
| CVE-2016-9778 | An error handling certain queries using the nxdomain-redirect feature could cause a REQUIR | |
| CVE-2017-3142 | An error in TSIG authentication can permit unauthorized zone transfers | |
| CVE-2017-3141 | Windows service and uninstall paths are not quoted when BIND is installed | |
| CVE-2017-3140 | An error processing RPZ rules can cause named to loop endlessly after handling a query | |
| CVE-2017-3138 | named exits with a REQUIRE assertion failure if it receives a null command string on its c | |
| CVE-2017-3137 | A response packet can cause a resolver to terminate when processing an answer containing a | |
| CVE-2017-3136 | An error handling synthesized records could cause an assertion failure when using DNS64 wi | |
| CVE-2017-3135 | Combination of DNS64 and RPZ Can Lead to Crash |
IV. 関連脆弱性
同じベンダー: ISC
- CVE-2026-3591
A stack use-after-return flaw in SIG(0) handling code may en - CVE-2026-3119
Authenticated query containing a TKEY record may cause named - CVE-2026-3104
Memory leak in code preparing DNSSEC proofs of non-existence - CVE-2026-1519
Excessive NSEC3 iterations cause high CPU load during insecu - CVE-2026-3608
Stack overflow in Kea daemons
V. CVE-2018-5739へのコメント
まだコメントはありません