CVE-2020-37127 — Stack-based Buffer Overflow in Dnsmasq-utils

CWE-121 — Stack-based Buffer Overflow CWE-120 — Classic Buffer Overflow9 documents8 sources

Severity

6.9MEDIUMNVD

EPSS

0.0%

top 99.74%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Thekelleys Dnsmasq Dnsmasq Dnsmasq-utils

Timeline

PublishedFeb 5

Description

Dnsmasq-utils 2.79-1 contains a buffer overflow vulnerability in the dhcp_release utility that allows attackers to cause a denial of service by supplying excessive input. Attackers can trigger a core dump and terminate the dhcp_release process by sending a crafted input string longer than 16 characters.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

▶CVEListV5dnsmasq/dnsmasq-utils2.79

▶Debianthekelleys/dnsmasq< 2.80-1+3

🔴Vulnerability Details

OSV

CVE-2020-37127: Dnsmasq-utils 2↗2026-02-05

▶

GHSA

GHSA-j2ph-f4fj-m4r3: Dnsmasq-utils 2↗2026-02-05

▶

CVEList

dnsmasq-utils 2.79-1 - 'dhcp_release' Denial of Service↗2026-02-05

▶

📋Vendor Advisories

Red Hat

dnsmasq: dnsmasq-utils 'dhcp_release' Denial of Service↗2026-02-05

▶

Debian

CVE-2020-37127: dnsmasq - Dnsmasq-utils 2.79-1 contains a buffer overflow vulnerability in the dhcp_releas...↗2020

▶

🕵️Threat Intelligence

Wiz

CVE-2020-37127 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶

💬Community

Bugzilla

CVE-2020-37127 incus: dnsmasq-utils 'dhcp_release' Denial of Service [fedora-43]↗2026-02-05

▶

Bugzilla

CVE-2020-37127 incus: dnsmasq-utils 'dhcp_release' Denial of Service [fedora-42]↗2026-02-05

▶