CVE-2021-45957 — Out-of-bounds Write in Dnsmasq

CWE-787 — Out-of-bounds Write16 documents5 sources

Severity

9.8CRITICALNVD

EPSS

0.0%

top 89.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Thekelleys Dnsmasq

Timeline

PublishedJan 1

Latest updateJan 2

Description

Dnsmasq 2.86 has a heap-based buffer overflow in answer_request (called from FuzzAnswerTheRequest and fuzz_rfc1035.c). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

▶NVDthekelleys/dnsmasq2.86

🔴Vulnerability Details

GHSA

GHSA-jpgp-wjp4-f47j: Dnsmasq 2↗2022-01-02

▶

CVEList

CVE-2021-45957: Dnsmasq 2↗2021-12-31

▶

📋Vendor Advisories

Red Hat

dnsmasq: a heap-based buffer overflow in answer_request↗2022-01-01

▶

Red Hat

dnsmasq: heap-based buffer overflow in resize_packet↗2022-01-01

▶

Red Hat

dnsmasq: a heap-based buffer overflow in dhcp_reply↗2022-01-01

▶

Red Hat

dnsmasq: a heap-based buffer overflow in check_bad_address↗2022-01-01

▶

Red Hat

dnsmasq: a heap-based buffer overflow in print_mac↗2022-01-01

▶