Allele Security Alert
An oversight when validating incoming client requests can lead to a situation where the Kea server will exit when trying to restart
Internet Systems Consortium (ISC)
ISC Kea DHCP
ISC Kea DHCP version 1.4.0
ISC Kea DHCP version 1.5.0
ISC Kea DHCP version 1.6.0-beta1 and 1.6.0-beta2
ISC Kea DHCP version 1.4.0-P2
ISC Kea DHCP version 1.5.0-P1
ISC Kea DHCP version 1.6.0
Proof of concept
A missing check on incoming client requests can be exploited to cause a situation where the Kea server’s lease storage contains leases which are rejected as invalid when the server tries to load leases from storage on restart. If the number of such leases exceeds a hard-coded limit in the Kea code, a server trying to restart will conclude that there is a problem with its lease store and give up. An attacker can exploit the missing check to deliberately create a situation where the server will not restart properly should it stop for any reason.
CVE-2019-6474: An oversight when validating incoming client requests can lead to a situation where the Kea server will exit when trying to restart
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: October 21, 2019