CVE-2019-14513Improper Restriction of Operations within the Bounds of a Memory Buffer in Dnsmasq

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-125Out-of-bounds Read9 documents8 sources
Severity
7.5HIGHNVD
CNA9.8OSV9.8
EPSS
0.0%
top 85.57%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Thekelleys DnsmasqDebian Linux
Timeline
PublishedAug 1
Latest updateMay 24

Description

Improper bounds checking in Dnsmasq before 2.76 allows an attacker controlled DNS server to send large DNS packets that result in a read operation beyond the buffer allocated for the packet, a different vulnerability than CVE-2017-14491.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

NVDthekelleys/dnsmasq< 2.76
Debianthekelleys/dnsmasq< 2.76-1+3
Ubuntuthekelleys/dnsmasq< 2.75-1ubuntu0.16.04.10

Also affects: Debian Linux 8.0

🔴Vulnerability Details

4
GHSA
GHSA-8x2j-2xxw-g7h5: Improper bounds checking in Dnsmasq before 22022-05-24
OSV
dnsmasq vulnerabilities2021-04-22
CVEList
CVE-2019-14513: Improper bounds checking in Dnsmasq before 22019-08-01
OSV
CVE-2019-14513: Improper bounds checking in Dnsmasq before 22019-08-01

📋Vendor Advisories

3
Ubuntu
Dnsmasq vulnerabilities2021-04-22
Red Hat
dnsmasq: Improper bounds checking leads to a buffer overread2019-08-09
Debian
CVE-2019-14513: dnsmasq - Improper bounds checking in Dnsmasq before 2.76 allows an attacker controlled DN...2019

💬Community

1
Bugzilla
CVE-2019-14513 dnsmasq: Improper bounds checking leads to a buffer overread2019-08-09
CVE-2019-14513 — Thekelleys Dnsmasq vulnerability | cvebase