CVE-2017-14491: Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS…

critical9.8CVSS 3.1

AVNACLPRNUINSUCHIHAH

EXPLOIT

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.

Affected

61 ranges· showing 25

Vendor	Product	Version range	Fixed in
arista	eos	<= 4.15	—
arista	eos	>= 4.16 < 4.16.13m	4.16.13m
arista	eos	>= 4.17 < 4.17.8m	4.17.8m
arista	eos	4.18 – 4.18.4.2f	—
arubanetworks	arubaos	>= 6.3.1 < 6.3.1.25	6.3.1.25
arubanetworks	arubaos	>= 6.4.4.0 < 6.4.4.16	6.4.4.16
arubanetworks	arubaos	>= 6.5.0.0 < 6.5.1.9	6.5.1.9
arubanetworks	arubaos	>= 6.5.3.0 < 6.5.3.3	6.5.3.3
arubanetworks	arubaos	>= 6.5.4.0 < 6.5.4.2	6.5.4.2
arubanetworks	arubaos	>= 8.1.0.0 < 8.1.0.4	8.1.0.4
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
debian	debian_linux	—	—
debian	debian_linux	—	—
debian	debian_linux	—	—
debian	debian_linux	—	—
debian	dnsmasq	< dnsmasq 2.76-1 (bookworm)	dnsmasq 2.76-1 (bookworm)
debian	dnsmasq	< dnsmasq 2.78-1 (bookworm)	dnsmasq 2.78-1 (bookworm)
google	android	—	—
huawei	honor_v9_play_firmware	< jimmy-al00ac00b135	jimmy-al00ac00b135
nvidia	geforce_experience	>= 3.0 < 3.10.0.55	3.10.0.55
nvidia	linux_for_tegra	< r21.6	r21.6
nvidia	linux_for_tegra	< r24.2.2	r24.2.2

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

osv9.8CRITICAL