medium
5
CWE
20
Advisory Published
CVE Published
Updated

CVE-2013-0198: Input Validation

First published: Fri Jan 11 2013(Updated: )

Description of problem: On my workstation, as a virtual machine host, I have NetworkManager's dnsmasq configured to forward DNS queries for a local domain to 192.168.122.1, so I can resolve those to virtual machine DHCP hostnames. Recently this stopped working. With manual dig commands, I found that TCP queries still work, but UDP doesn't. For example, in libvirt I have a statically defined name "vhost" to 192.168.122.1 itself. From the host, the command "dig +short +tcp @192.168.122.1 vhost" resolves that just fine. But "dig +short +notcp @192.168.122.1 vhost" says "connection timed out; no servers could be reached". From a guest, +tcp and +notcp both work fine. Version-Release number of selected component (if applicable): libvirt-0.9.11.8-2.fc17.x86_64, dnsmasq-2.63-1.fc17.x86_64 I also tried dnsmasq-2.65-1.fc17.x86_64 from updates-testing How reproducible: 100% Steps to Reproduce: 1. From the virtual machine host, try to query the libvirt dnsmasq. Actual results: $ dig +short +tcp @192.168.122.1 vhost 192.168.122.1 $ dig +short +notcp @192.168.122.1 vhost ;; connection timed out; no servers could be reached Expected results: A positive answer from both TCP and UDP queries. Additional info: I suspect this is related to the fixes for <a href="https://access.redhat.com/security/cve/CVE-2012-3411">CVE-2012-3411</a>, but it seems weird that UDP and TCP would be treated differently.

Credit: secalert@redhat.com

Affected SoftwareAffected VersionHow to fix
the kelleys dnsmasq<=2.65

Remedy

https://bugzilla.redhat.com/show_bug.cgi?id=894486

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2013-0198?

    CVE-2013-0198 has a severity level classified as high due to potential security implications in DNS configurations.

  • How do I fix CVE-2013-0198?

    To fix CVE-2013-0198, update dnsmasq to version 2.66 or later to mitigate the vulnerability.

  • What systems are affected by CVE-2013-0198?

    CVE-2013-0198 affects dnsmasq versions up to and including 2.65.

  • What type of vulnerability is CVE-2013-0198?

    CVE-2013-0198 is a DNS-related vulnerability that can lead to DNS spoofing in specific configurations.

  • When was CVE-2013-0198 published?

    CVE-2013-0198 was published on January 18, 2013.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203