Published: 04/10/2017 Updated: 07/11/2023

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 758

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Heap-based buffer overflow in dnsmasq prior to 2.78 allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.

Vulnerable Product	Search on Vulmon	Subscribe to Product
thekelleys dnsmasq
redhat enterprise linux desktop 7.0
redhat enterprise linux workstation 7.0
redhat enterprise linux server 7.0
redhat enterprise linux desktop 6.0
redhat enterprise linux server 6.0
redhat enterprise linux workstation 6.0
canonical ubuntu linux 12.04
canonical ubuntu linux 16.04
canonical ubuntu linux 14.04
canonical ubuntu linux 17.04
debian debian linux 7.1
debian debian linux 8.0
debian debian linux 7.0
debian debian linux 9.0
opensuse leap 42.3
opensuse leap 42.2
suse linux enterprise server 11
suse linux enterprise debuginfo 11
suse linux enterprise server 12
suse linux enterprise point of sale 11
nvidia linux_for_tegra
nvidia geforce_experience
huawei honor_v9_play_firmware
arista eos
siemens ruggedcom_rm1224_firmware
siemens scalance_m-800_firmware
siemens scalance_s615_firmware
siemens scalance_w1750d_firmware
arubanetworks arubaos
synology router manager 1.1
synology diskstation manager 6.0
synology diskstation manager 5.2
synology diskstation manager 6.1

Debian Bug report logs - #877102 dnsmasq: CVE-2017-13704: Size parameter overflow via large DNS query Package: src:dnsmasq; Maintainer for src:dnsmasq is Simon Kelley <simon@thekelleysorguk>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 28 Sep 2017 18:39:02 UTC Severity: grave Tags: fixed-upstre ...

Felix Wilhelm, Fermin J Serna, Gabriel Campana, Kevin Hamacher, Ron Bowes and Gynvael Coldwind of the Google Security Team discovered several vulnerabilities in dnsmasq, a small caching DNS proxy and DHCP/TFTP server, which may result in denial of service, information leak or the execution of arbitrary code For the oldstable distribution (jessie) ...

Synopsis Critical: dnsmasq security update Type/Severity Security Advisory: Critical Topic An update for dnsmasq is now available for Red Hat Enterprise Linux 5 Extended Lifecycle SupportRed Hat Product Security has rated this update as having a security impact of Critical A Common Vulnerability Scoring S ...

Synopsis Critical: dnsmasq security update Type/Severity Security Advisory: Critical Topic An update for dnsmasq is now available for Red Hat Enterprise Linux 6Red Hat Product Security has rated this update as having a security impact of Critical A Common Vulnerability Scoring System (CVSS) base score, wh ...

Synopsis Critical: dnsmasq security update Type/Severity Security Advisory: Critical Topic An update for dnsmasq is now available for Red Hat Enterprise Linux 59 Long LifeRed Hat Product Security has rated this update as having a security impact of Critical A Common Vulnerability Scoring System (CVSS) ba ...

Synopsis Critical: dnsmasq security update Type/Severity Security Advisory: Critical Topic An update for dnsmasq is now available for Red Hat Enterprise Linux 62 Advanced Update Support, Red Hat Enterprise Linux 64 Advanced Update Support, Red Hat Enterprise Linux 65 Advanced Update Support, Red Hat Ente ...

Synopsis Critical: dnsmasq security update Type/Severity Security Advisory: Critical Topic An update for dnsmasq is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Critical A Common Vulnerability Scoring System (CVSS) base score, wh ...

Synopsis Critical: dnsmasq security update Type/Severity Security Advisory: Critical Topic An update for dnsmasq is now available for Red Hat Enterprise Linux 72 Extended Update Support and Red Hat Enterprise Linux 73 Extended Update SupportRed Hat Product Security has rated this update as having a secur ...

Several security issues were fixed in Dnsmasq ...

USN-3430-2 introduced regression in Dnsmasq ...

Several security issues were fixed in Dnsmasq ...

Information leak in the DHCPv6 relay codeAn information leak was found in dnsmasq in the DHCPv6 relay code An attacker on the local network could send crafted DHCPv6 packets to dnsmasq causing it to forward the contents of process memory, potentially leaking sensitive data (CVE-2017-14494) Memory exhaustion vulnerability in the EDNS0 codeA memory ...

A memory exhaustion flaw was found in dnsmasq in the EDNS0 code An attacker could send crafted DNS packets which would trigger memory allocations which would never be freed, leading to unbounded memory consumption and eventually a crash This issue only affected configurations using one of the options: add-mac, add-cpe-id, or add-subnet (CVE-2017 ...

A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code ...

Critical Infrastructure Sectors: Critical Manufacturing

''' Sources: rawgithubusercontentcom/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14491py securitygoogleblogcom/2017/10/behind-masq-yet-more-dns-and-dhcphtml 1) Build the docker and open three terminals docker build -t dnsmasq docker run --rm -t -i --name dnsmasq_test dnsmasq bash docker cp pocpy ...

Dnsmasq versions prior to 278 suffer from a 2-byte heap-based overflow vulnerability ...

Kubernetes setup on Amazon AWS using Kops and Ansible This repository contains tooling for deploying Kubernetes cluster in Amazon AWS using the Kops tool Kops is a great tool if you want to setup HA cluster and don't require too much flexibility If you prefer flexibility instead of HA setup you should have a look at another repsoitory where I have Kubernetes setup implem

Kubernetes setup on Amazon AWS using Kops and Ansible

Kubernetes setup on Amazon AWS using Kops and Ansible This repository contains tooling for deploying Kubernetes cluster in Amazon AWS using the Kops tool Kops is a great tool if you want to setup HA cluster and don't require too much flexibility If you prefer flexibility instead of HA setup you should have a look at another repsoitory where I have Kubernetes setup implem

Kubernetes setup on Amazon AWS using Kops and Ansible -1 This repository contains tooling for deploying Kubernetes cluster in Amazon AWS using the Kops tool Kops is a great tool if you want to setup HA cluster and don't require too much flexibility If you prefer flexibility instead of HA setup you should have a look at another repsoitory where I have Kubernetes setup imp

CWE-787 https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html http://www.securitytracker.com/id/1039474 http://thekelleys.org.uk/dnsmasq/CHANGELOG https://www.exploit-db.com/exploits/42941/http://www.securityfocus.com/bid/101085 https://www.kb.cert.org/vuls/id/973527 https://access.redhat.com/security/vulnerabilities/3199382 https://access.redhat.com/errata/RHSA-2017:2841 https://access.redhat.com/errata/RHSA-2017:2840 https://access.redhat.com/errata/RHSA-2017:2839 https://access.redhat.com/errata/RHSA-2017:2838 https://access.redhat.com/errata/RHSA-2017:2837 https://access.redhat.com/errata/RHSA-2017:2836 http://www.ubuntu.com/usn/USN-3430-2 http://www.ubuntu.com/usn/USN-3430-1 http://www.debian.org/security/2017/dsa-3989 http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00006.html http://nvidia.custhelp.com/app/answers/detail/a_id/4561 https://security.gentoo.org/glsa/201710-27 http://www.securityfocus.com/bid/101977 https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf http://nvidia.custhelp.com/app/answers/detail/a_id/4560 https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/http://www.ubuntu.com/usn/USN-3430-3 http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00005.html https://www.debian.org/security/2017/dsa-3989 http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00004.html https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449 http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00003.html https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30 http://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=0549c73b7ea6b22a3c49beb4d432f185a81efcbc https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11665.html https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11664.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877102 https://nvd.nist.gov https://usn.ubuntu.com/3430-1/https://www.exploit-db.com/exploits/42941/https://www.cisa.gov/news-events/ics-advisories/icsa-24-074-07 https://www.kb.cert.org/vuls/id/973527

CVE-2017-14491

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

ICS Advisories

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect