CVE-2008-3214
published 2008-07-18CVE-2008-3214: dnsmasq 2.25 allows remote attackers to cause a denial of service (daemon crash) by (1) renewing a nonexistent lease or (2) sending a DHCPREQUEST for an IP…
PriorityP432high7.8CVSS 2.0
AVNACLAuNCNINAC
EPSS
2.53%
82.9th percentile
dnsmasq 2.25 allows remote attackers to cause a denial of service (daemon crash) by (1) renewing a nonexistent lease or (2) sending a DHCPREQUEST for an IP address that is not in the same network, related to the DHCP NAK response from the daemon.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | dnsmasq | < dnsmasq 2.26-1 (bookworm) | dnsmasq 2.26-1 (bookworm) |
| debian | dnsmasq | < dnsmasq 2.44-1 (bookworm) | dnsmasq 2.44-1 (bookworm) |
| the_kelleys | dnsmasq | — | — |
| thekelleys | dnsmasq | — | — |
| thekelleys | dnsmasq | >= 0 < 2.26-1 | 2.26-1 |
| thekelleys | dnsmasq | >= 0 < 2.44-1 | 2.44-1 |
| thekelleys | dnsmasq | >= 0 < 2.26-1 | 2.26-1 |
| thekelleys | dnsmasq | >= 0 < 2.44-1 | 2.44-1 |
| thekelleys | dnsmasq | >= 0 < 2.26-1 | 2.26-1 |
| thekelleys | dnsmasq | >= 0 < 2.44-1 | 2.44-1 |
| thekelleys | dnsmasq | >= 0 < 2.26-1 | 2.26-1 |
| thekelleys | dnsmasq | >= 0 < 2.44-1 | 2.44-1 |
CVSS provenance
nvdv2.07.8HIGHAV:N/AC:L/Au:N/C:N/I:N/A:C
osv7.8HIGH
vendor_debian7.8LOW
vendor_redhat7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2008-3214: dnsmasq - dnsmasq 2.25 allows remote attackers to cause a denial of service (daemon crash)...
vendor_debian·2008·CVSS 7.8
CVE-2008-3214 [HIGH] CVE-2008-3214: dnsmasq - dnsmasq 2.25 allows remote attackers to cause a denial of service (daemon crash)...
dnsmasq 2.25 allows remote attackers to cause a denial of service (daemon crash) by (1) renewing a nonexistent lease or (2) sending a DHCPREQUEST for an IP address that is not in the same network, related to the DHCP NAK response from the daemon.
Scope: local
bookworm: resolved (fixed in 2.26-1)
bullseye: resolved (fixed in 2.26-1)
forky: resolved (fixed in 2.26-1)
sid: resolved (fixed in 2.26-1)
trixie: resolved (fixed in 2.26-1)
Debian
CVE-2008-3350: dnsmasq - dnsmasq 2.43 allows remote attackers to cause a denial of service (daemon crash)...
vendor_debian·2008·CVSS 7.8
CVE-2008-3350 [HIGH] CVE-2008-3350: dnsmasq - dnsmasq 2.43 allows remote attackers to cause a denial of service (daemon crash)...
dnsmasq 2.43 allows remote attackers to cause a denial of service (daemon crash) by (1) sending a DHCPINFORM while lacking a DHCP lease, or (2) attempting to renew a nonexistent DHCP lease for an invalid subnet as an "unknown client," a different vulnerability than CVE-2008-3214.
Scope: local
bookworm: resolved (fixed in 2.44-1)
bullseye: resolved (fixed in 2.44-1)
forky: resolved (fixed in 2.44-1)
sid: resolved (fixed in 2.44-1)
trixie: resolved (fixed in 2.44-1)
Red Hat
CVE-2008-3214: dnsmasq 2
vendor_redhat·CVSS 7.8
CVE-2008-3214 [HIGH] CVE-2008-3214: dnsmasq 2
dnsmasq 2.25 allows remote attackers to cause a denial of service (daemon crash) by (1) renewing a nonexistent lease or (2) sending a DHCPREQUEST for an IP address that is not in the same network, related to the DHCP NAK response from the daemon.
Statement: Not vulnerable. This issue did not affect the version of dnsmasq as shipped with Red Hat Enterprise Linux 5.
Red Hat
CVE-2008-3350: dnsmasq 2
vendor_redhat·CVSS 7.8
CVE-2008-3350 [HIGH] CVE-2008-3350: dnsmasq 2
dnsmasq 2.43 allows remote attackers to cause a denial of service (daemon crash) by (1) sending a DHCPINFORM while lacking a DHCP lease, or (2) attempting to renew a nonexistent DHCP lease for an invalid subnet as an "unknown client," a different vulnerability than CVE-2008-3214.
Statement: Not vulnerable. These issues did not affect the version of dnsmasq as shipped with Red Hat Enterprise Linux 5.
GHSA
GHSA-q354-p7j8-f3fx: dnsmasq 2
ghsa_unreviewed·2022-05-01
CVE-2008-3214 [HIGH] CWE-20 GHSA-q354-p7j8-f3fx: dnsmasq 2
dnsmasq 2.25 allows remote attackers to cause a denial of service (daemon crash) by (1) renewing a nonexistent lease or (2) sending a DHCPREQUEST for an IP address that is not in the same network, related to the DHCP NAK response from the daemon.
GHSA
GHSA-8w5w-hcg8-56w5: dnsmasq 2
ghsa_unreviewed·2022-05-01·CVSS 7.8
CVE-2008-3350 [HIGH] GHSA-8w5w-hcg8-56w5: dnsmasq 2
dnsmasq 2.43 allows remote attackers to cause a denial of service (daemon crash) by (1) sending a DHCPINFORM while lacking a DHCP lease, or (2) attempting to renew a nonexistent DHCP lease for an invalid subnet as an "unknown client," a different vulnerability than CVE-2008-3214.
OSV
CVE-2008-3350: dnsmasq 2
osv·2008-07-28·CVSS 7.8
CVE-2008-3350 [HIGH] CVE-2008-3350: dnsmasq 2
dnsmasq 2.43 allows remote attackers to cause a denial of service (daemon crash) by (1) sending a DHCPINFORM while lacking a DHCP lease, or (2) attempting to renew a nonexistent DHCP lease for an invalid subnet as an "unknown client," a different vulnerability than CVE-2008-3214.
OSV
CVE-2008-3214: dnsmasq 2
osv·2008-07-18·CVSS 7.8
CVE-2008-3214 [HIGH] CVE-2008-3214: dnsmasq 2
dnsmasq 2.25 allows remote attackers to cause a denial of service (daemon crash) by (1) renewing a nonexistent lease or (2) sending a DHCPREQUEST for an IP address that is not in the same network, related to the DHCP NAK response from the daemon.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://freshmeat.net/projects/dnsmasq/?branch_id=1991&release_id=217681http://www.openwall.com/lists/oss-security/2008/06/30/7http://www.openwall.com/lists/oss-security/2008/07/01/8http://www.openwall.com/lists/oss-security/2008/07/02/4http://www.openwall.com/lists/oss-security/2008/07/03/4http://www.openwall.com/lists/oss-security/2008/07/08/8http://www.openwall.com/lists/oss-security/2008/07/12/3http://www.thekelleys.org.uk/dnsmasq/CHANGELOGhttps://bugs.launchpad.net/ubuntu/+source/dnsmasq/+bug/47438https://exchange.xforce.ibmcloud.com/vulnerabilities/43929http://freshmeat.net/projects/dnsmasq/?branch_id=1991&release_id=217681http://www.openwall.com/lists/oss-security/2008/06/30/7http://www.openwall.com/lists/oss-security/2008/07/01/8http://www.openwall.com/lists/oss-security/2008/07/02/4http://www.openwall.com/lists/oss-security/2008/07/03/4http://www.openwall.com/lists/oss-security/2008/07/08/8http://www.openwall.com/lists/oss-security/2008/07/12/3http://www.thekelleys.org.uk/dnsmasq/CHANGELOGhttps://bugs.launchpad.net/ubuntu/+source/dnsmasq/+bug/47438https://exchange.xforce.ibmcloud.com/vulnerabilities/43929
2008-07-18
Published