First published: Tue Sep 26 2017(Updated: )
Memory leak in dnsmasq before 2.78, when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service (memory consumption) via vectors involving DNS response creation.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
debian/dnsmasq | 2.80-1+deb10u1 2.85-1 2.89-1 | |
redhat/dnsmasq | <2.78 | 2.78 |
Canonical Ubuntu Linux | =14.04 | |
Canonical Ubuntu Linux | =16.04 | |
Canonical Ubuntu Linux | =17.04 | |
Debian Debian Linux | =7.0 | |
Debian Debian Linux | =7.1 | |
Debian Debian Linux | =9.0 | |
Novell Leap | =42.2 | |
Novell Leap | =42.3 | |
Redhat Enterprise Linux Desktop | =7.0 | |
Redhat Enterprise Linux Server | =7.0 | |
Redhat Enterprise Linux Workstation | =7.0 | |
Thekelleys Dnsmasq | <=2.77 |
http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=51eadb692a5123b9838e5a68ecace3ac579a3a45
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.