CVE-2018-5739

16.01.2019, 20:29

An extension to hooks capabilities which debuted in Kea 1.4.0 introduced a memory leak for operators who are using certain hooks library facilities. In order to support multiple requests simultaneously, Kea 1.4 added a callout handle store but unfortunately the initial implementation of this store does not properly free memory in every case. Hooks which make use of query4 or query6 parameters in their callouts can leak memory, resulting in the eventual exhaustion of available memory and subsequent failure of the server process. Affects Kea DHCP 1.4.0.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6.5 MEDIUM	ADJACENT_NETWORK	LOW	NONE	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
isc	CNA	6.5 MEDIUM	ADJACENT_NETWORK	LOW	NONE	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 86%

Vendor	Product	Version
isc	kea	1.4.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

isc-kea

bookworm	2.2.0-6 fixed
sid	2.4.1-3 fixed
trixie	2.4.1-3 fixed

Ubuntu Releases

Ubuntu Product

Codename

isc-kea

lunar	not-affected
kinetic	not-affected
jammy	not-affected
impish	ignored
hirsute	ignored
groovy	ignored
focal	not-affected
eoan	ignored
disco	ignored
cosmic	ignored
bionic	not-affected
artful	ignored
xenial	not-affected
trusty	dne

Common Weakness Enumeration

CWE-772 - Missing Release of Resource after Effective Lifetime
The software does not release a resource after its effective lifetime has ended, i.e., after the resource is no longer needed.

References

https://kb.isc.org/docs/aa-01626