CVE-2017-14491: Buffer Overflow
First published: Tue Sep 26 2017(Updated: )
Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/dnsmasq | 2.80-1+deb10u1 2.85-1 2.89-1 | |
| redhat/dnsmasq | <2.78 | 2.78 |
| Android | ||
| dnsmasq | <=2.77 | |
| redhat enterprise Linux desktop | =6.0 | |
| redhat enterprise Linux desktop | =7.0 | |
| redhat enterprise Linux server | =6.0 | |
| redhat enterprise Linux server | =7.0 | |
| redhat enterprise Linux workstation | =6.0 | |
| redhat enterprise Linux workstation | =7.0 | |
| Ubuntu | =12.04 | |
| Ubuntu | =12.04 | |
| Ubuntu | =14.04 | |
| Ubuntu | =16.04 | |
| Ubuntu | =17.04 | |
| Debian | =7.0 | |
| Debian | =7.1 | |
| Debian | =8.0 | |
| Debian | =9.0 | |
| openSUSE | =42.2 | |
| openSUSE | =42.3 | |
| SUSE Linux Enterprise Debuginfo | =11-sp3 | |
| SUSE Linux Enterprise Debuginfo | =11-sp4 | |
| SUSE Linux Enterprise Point of Sale | =11-sp3 | |
| SUSE Linux Enterprise Server | =11-sp3 | |
| SUSE Linux Enterprise Server | =11-sp4 | |
| SUSE Linux Enterprise Server | =12 | |
| All of | ||
| NVIDIA Linux for Tegra | <r21.6 | |
| NVIDIA Jetson TK1 | ||
| All of | ||
| NVIDIA Linux for Tegra | <r24.2.2 | |
| NVIDIA Jetson TX1 L4T | ||
| All of | ||
| NVIDIA GeForce Experience | >=3.0<3.10.0.55 | |
| Microsoft Windows | ||
| All of | ||
| Huawei Honor V9 Play Firmware | <jimmy-al00ac00b135 | |
| Huawei Honor V9 Play Firmware | ||
| Arista EOS | <=4.15 | |
| Arista EOS | >=4.16<4.16.13m | |
| Arista EOS | >=4.17<4.17.8m | |
| Arista EOS | >=4.18<=4.18.4.2f | |
| All of | ||
| Siemens Ruggedcom RM1224 LTE (4G) NAM | <5.0 | |
| Siemens Ruggedcom RM1224 LTE(4G) EU | ||
| All of | ||
| Siemens Scalance M-800 Firmware | <5.0 | |
| Siemens Scalance M-800 Firmware | ||
| All of | ||
| Siemens Scalance S615 Firmware | <5.0 | |
| Siemens SCALANCE S615 firmware | ||
| All of | ||
| Siemens SCALANCE W1750D | <6.5.1.5 | |
| Siemens Scalance W1750D Firmware | ||
| ArubaOS | >=6.3.1<6.3.1.25 | |
| ArubaOS | >=6.4.4.0<6.4.4.16 | |
| ArubaOS | >=6.5.0.0<6.5.1.9 | |
| ArubaOS | >=6.5.3.0<6.5.3.3 | |
| ArubaOS | >=6.5.4.0<6.5.4.2 | |
| ArubaOS | >=8.1.0.0<8.1.0.4 | |
| Synology Router Manager | =1.1 | |
| Synology DiskStation Manager | =5.2 | |
| Synology DiskStation Manager | =6.0 | |
| Synology DiskStation Manager | =6.1 | |
| NVIDIA Linux for Tegra | <r21.6 | |
| NVIDIA Jetson TK1 | ||
| NVIDIA Linux for Tegra | <r24.2.2 | |
| NVIDIA Jetson TX1 L4T | ||
| NVIDIA GeForce Experience | >=3.0<3.10.0.55 | |
| Microsoft Windows | ||
| Huawei Honor V9 Play Firmware | <jimmy-al00ac00b135 | |
| Huawei Honor V9 Play Firmware | ||
| Siemens Ruggedcom RM1224 LTE (4G) NAM | <5.0 | |
| Siemens Ruggedcom RM1224 LTE(4G) EU | ||
| Siemens Scalance M-800 Firmware | <5.0 | |
| Siemens Scalance M-800 Firmware | ||
| Siemens Scalance S615 Firmware | <5.0 | |
| Siemens SCALANCE S615 firmware | ||
| Siemens SCALANCE W1750D | <6.5.1.5 | |
| Siemens Scalance W1750D Firmware | ||
| Synology DiskStation Manager | =5.2 | |
| Synology DiskStation Manager | =6.0 | |
| Synology DiskStation Manager | =6.1 |
Remedy
http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=0549c73b7ea6b22a3c49beb4d432f185a81efcbc
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html
- http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=0549c73b7ea6b22a3c49beb4d432f185a81efcbc
- http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=62cb936cb7ad5f219715515ae7d32dd281a5aa1f
- https://security-tracker.debian.org/tracker/CVE-2017-14491
- https://access.redhat.com/security/cve/CVE-2017-14491
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1330989&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1330989&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1331241&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1331241&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1495409#c8
- https://access.redhat.com/security/vulnerabilities/3199382
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1497691
- http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commitdiff;h=0549c73b7ea6b22a3c49beb4d432f185a81efcbc
- http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commitdiff;h=62cb936cb7ad5f219715515ae7d32dd281a5aa1f
- https://github.com/google/security-research-pocs/tree/master/vulnerabilities/dnsmasq
- https://access.redhat.com/errata/RHSA-2017:2840
- https://access.redhat.com/errata/RHSA-2017:2841
- https://access.redhat.com/errata/RHSA-2017:2837
- https://access.redhat.com/errata/RHSA-2017:2838
- https://access.redhat.com/errata/RHSA-2017:2839
- https://access.redhat.com/errata/RHSA-2017:2836
- https://bugzilla.redhat.com/show_bug.cgi?id=1495409
- http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00003.html
- http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00004.html
- http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00005.html
- http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00006.html
- http://nvidia.custhelp.com/app/answers/detail/a_id/4560
- http://nvidia.custhelp.com/app/answers/detail/a_id/4561
- http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html
- http://thekelleys.org.uk/dnsmasq/CHANGELOG
- http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt
- http://www.debian.org/security/2017/dsa-3989
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en
- http://www.securityfocus.com/bid/101085
- http://www.securityfocus.com/bid/101977
- http://www.securitytracker.com/id/1039474
- http://www.ubuntu.com/usn/USN-3430-1
- http://www.ubuntu.com/usn/USN-3430-2
- http://www.ubuntu.com/usn/USN-3430-3
- https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV/
- https://security.gentoo.org/glsa/201710-27
- https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30
- https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449
- https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/
- https://www.debian.org/security/2017/dsa-3989
- https://www.exploit-db.com/exploits/42941/
- https://www.kb.cert.org/vuls/id/973527
- https://www.mail-archive.com/dnsmasq-discuss@lists.thekelleys.org.uk/msg11664.html
- https://www.mail-archive.com/dnsmasq-discuss@lists.thekelleys.org.uk/msg11665.html
- https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq
- https://android.googlesource.com/platform/external/dnsmasq/+/10ba39da6b98043989b1a604f533d5b647ee7bda
- https://source.android.com/docs/security/bulletin/2021-03-01 (Advisory)
- http://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=0549c73b7ea6b22a3c49beb4d432f185a81efcbc
- https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11665.html
- https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11664.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB/
Frequently Asked Questions
What is the severity of CVE-2017-14491?
CVE-2017-14491 is classified as a high severity vulnerability due to its potential to cause denial of service or execute arbitrary code remotely.
How do I fix CVE-2017-14491?
To fix CVE-2017-14491, upgrade dnsmasq to version 2.80 or later on affected Debian systems, or to 2.78 for Red Hat systems.
What systems are affected by CVE-2017-14491?
CVE-2017-14491 affects multiple systems including Debian, Red Hat, and various Linux distributions using dnsmasq versions prior to 2.78.
What type of vulnerability is CVE-2017-14491?
CVE-2017-14491 is a heap-based buffer overflow vulnerability specifically within the DNS implementation of dnsmasq.
Can CVE-2017-14491 be exploited remotely?
Yes, CVE-2017-14491 can be exploited remotely via crafted DNS responses, making it a critical threat.
- collector/security-tracker-debian
- agent/first-publish-date
- agent/remedy
- agent/type
- agent/severity
- agent/weakness
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2017-14491
- agent/software-canonical-lookup
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/event
- agent/last-modified-date
- agent/author
- agent/source
- collector/android-source
- source/Android
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- collector/nvd-index
- package-manager/debian
- package-manager/redhat
- vendor/google
- canonical/android
- vendor/thekelleys
- canonical/dnsmasq
- version/dnsmasq/2.77
- vendor/redhat
- canonical/redhat enterprise linux desktop
- version/redhat enterprise linux desktop/6.0
- version/redhat enterprise linux desktop/7.0
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/6.0
- version/redhat enterprise linux server/7.0
- canonical/redhat enterprise linux workstation
- version/redhat enterprise linux workstation/6.0
- version/redhat enterprise linux workstation/7.0
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/12.04
- version/ubuntu/14.04
- version/ubuntu/16.04
- version/ubuntu/17.04
- vendor/debian
- canonical/debian
- version/debian/7.0
- version/debian/7.1
- version/debian/8.0
- version/debian/9.0
- vendor/opensuse
- canonical/opensuse
- version/opensuse/42.2
- version/opensuse/42.3
- vendor/suse
- canonical/suse linux enterprise debuginfo
- version/suse linux enterprise debuginfo/11-sp3
- version/suse linux enterprise debuginfo/11-sp4
- canonical/suse linux enterprise point of sale
- version/suse linux enterprise point of sale/11-sp3
- canonical/suse linux enterprise server
- version/suse linux enterprise server/11-sp3
- version/suse linux enterprise server/11-sp4
- version/suse linux enterprise server/12
- vendor/nvidia
- canonical/nvidia linux for tegra
- canonical/nvidia jetson tk1
- canonical/nvidia jetson tx1 l4t
- canonical/nvidia geforce experience
- version/nvidia geforce experience/3.0
- vendor/microsoft
- canonical/microsoft windows
- vendor/huawei
- canonical/huawei honor v9 play firmware
- vendor/arista
- canonical/arista eos
- version/arista eos/4.15
- version/arista eos/4.16
- version/arista eos/4.17
- version/arista eos/4.18
- version/arista eos/4.18.4.2f
- vendor/siemens
- canonical/siemens ruggedcom rm1224 lte (4g) nam
- canonical/siemens ruggedcom rm1224 lte(4g) eu
- canonical/siemens scalance m-800 firmware
- canonical/siemens scalance s615 firmware
- canonical/siemens scalance w1750d
- canonical/siemens scalance w1750d firmware
- vendor/arubanetworks
- canonical/arubaos
- version/arubaos/6.3.1
- version/arubaos/6.4.4.0
- version/arubaos/6.5.0.0
- version/arubaos/6.5.3.0
- version/arubaos/6.5.4.0
- version/arubaos/8.1.0.0
- vendor/synology
- canonical/synology router manager
- version/synology router manager/1.1
- canonical/synology diskstation manager
- version/synology diskstation manager/5.2
- version/synology diskstation manager/6.0
- version/synology diskstation manager/6.1