rpm package
suse/dnsmasq&distro=SUSE Linux Enterprise Desktop 12 SP3
pkg:rpm/suse/dnsmasq&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3
Vulnerabilities (7)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-15107 | Hig | 7.5 | < 2.78-18.6.1 | 2.78-18.6.1 | Jan 23, 2018 | A vulnerability was found in the implementation of DNSSEC in Dnsmasq up to and including 2.78. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames that actually exist. | |
| CVE-2017-14491 | Cri | 9.8 | < 2.78-18.3.1 | 2.78-18.3.1 | Oct 4, 2017 | Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response. | |
| CVE-2017-14496 | Hig | 7.5 | < 2.78-18.3.1 | 2.78-18.3.1 | Oct 3, 2017 | Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request. | |
| CVE-2017-14495 | Hig | 7.5 | < 2.78-18.3.1 | 2.78-18.3.1 | Oct 3, 2017 | Memory leak in dnsmasq before 2.78, when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service (memory consumption) via vectors involving DNS response creation. | |
| CVE-2017-14494 | Med | 5.9 | < 2.78-18.3.1 | 2.78-18.3.1 | Oct 3, 2017 | dnsmasq before 2.78, when configured as a relay, allows remote attackers to obtain sensitive memory information via vectors involving handling DHCPv6 forwarded requests. | |
| CVE-2017-14493 | Cri | 9.8 | < 2.78-18.3.1 | 2.78-18.3.1 | Oct 3, 2017 | Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DHCPv6 request. | |
| CVE-2017-14492 | Cri | 9.8 | < 2.78-18.3.1 | 2.78-18.3.1 | Oct 3, 2017 | Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted IPv6 router advertisement request. |
- affected < 2.78-18.6.1fixed 2.78-18.6.1
A vulnerability was found in the implementation of DNSSEC in Dnsmasq up to and including 2.78. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames that actually exist.
- affected < 2.78-18.3.1fixed 2.78-18.3.1
Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.
- affected < 2.78-18.3.1fixed 2.78-18.3.1
Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.
- affected < 2.78-18.3.1fixed 2.78-18.3.1
Memory leak in dnsmasq before 2.78, when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service (memory consumption) via vectors involving DNS response creation.
- affected < 2.78-18.3.1fixed 2.78-18.3.1
dnsmasq before 2.78, when configured as a relay, allows remote attackers to obtain sensitive memory information via vectors involving handling DHCPv6 forwarded requests.
- affected < 2.78-18.3.1fixed 2.78-18.3.1
Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DHCPv6 request.
- affected < 2.78-18.3.1fixed 2.78-18.3.1
Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted IPv6 router advertisement request.