VYPR

rpm package

suse/dnsmasq&distro=SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5

pkg:rpm/suse/dnsmasq&distro=SUSE%20Cloud%20Compute%20Node%20for%20SUSE%20Linux%20Enterprise%2012%205

Vulnerabilities (2)

  • CVE-2015-8899HigJun 30, 2016
    affected < 2.71-6.3.1fixed 2.71-6.3.1

    Dnsmasq before 2.76 allows remote servers to cause a denial of service (crash) via a reply with an empty DNS address that has an (1) A or (2) AAAA record defined locally.

  • CVE-2015-3294May 8, 2015
    affected < 2.71-4.1fixed 2.71-4.1

    The tcp_request function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setup_reply function, which allows remote attackers to read process memory and cause a denial of service (out-of-bounds read and crash) via a malformed DNS request.