cbcvebase.

Thekelleys Dnsmasq vulnerabilities

44 known vulnerabilities affecting thekelleys/dnsmasq.

Total CVEs
44
CISA KEV
0
Public exploits
9
Exploited in wild
0
Severity breakdown
CRITICAL10HIGH16MEDIUM14LOW4

Vulnerabilities

Page 1 of 3
CVE-2017-14492P1CRITICALCVSS 9.8PoC≤ 2.772017-10-03
CVE-2017-14492 [CRITICAL] CWE-119 CVE-2017-14492: Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of servi Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted IPv6 router advertisement request.
nvdosv
CVE-2017-14491P1CRITICALCVSS 9.8PoC≤ 2.772017-10-04
CVE-2017-14491 [CRITICAL] CWE-787 CVE-2017-14491: Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of servi Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.
nvdosv
CVE-2017-14493P1CRITICALCVSS 9.8PoC≤ 2.772017-10-03
CVE-2017-14493 [CRITICAL] CWE-119 CVE-2017-14493: Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of serv Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DHCPv6 request.
nvdosv
CVE-2008-1447P2MEDIUMCVSS 6.8PoC≥ 0, < 2.43-12008-07-08
CVE-2008-1447 [MEDIUM] CVE-2008-1447: The DNS protocol, as implemented in (1) BIND 8 and 9 before 9 The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS
osv
CVE-2017-14495P2HIGHCVSS 7.5PoC≤ 2.772017-10-03
CVE-2017-14495 [HIGH] CWE-772 CVE-2017-14495: Memory leak in dnsmasq before 2.78, when the --add-mac, --add-cpe-id or --add-subnet option is speci Memory leak in dnsmasq before 2.78, when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service (memory consumption) via vectors involving DNS response creation.
nvdosv
CVE-2017-14496P2HIGHCVSS 7.5PoC≤ 2.772017-10-03
CVE-2017-14496 [HIGH] CWE-191 CVE-2017-14496: Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --ad Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.
nvdosv
CVE-2017-14494P2MEDIUMCVSS 5.9PoC≤ 2.772017-10-03
CVE-2017-14494 [MEDIUM] CWE-200 CVE-2017-14494: dnsmasq before 2.78, when configured as a relay, allows remote attackers to obtain sensitive memory dnsmasq before 2.78, when configured as a relay, allows remote attackers to obtain sensitive memory information via vectors involving handling DHCPv6 forwarded requests.
nvdosv
CVE-2020-25681P2HIGHCVSS 8.1fixed in 2.83vdnsmasq 2.832021-01-20
CVE-2020-25681 [HIGH] CWE-122 CVE-2020-25681: A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in the A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in the way RRSets are sorted before validating with DNSSEC data. An attacker on the network, who can forge DNS replies such as that they are accepted as valid, could use this flaw to cause a buffer overflow with arbitrary data in a heap memory segment, possibly
nvdosv
CVE-2020-25682P2HIGHCVSS 8.1fixed in 2.83vdnsmasq 2.832021-01-20
CVE-2020-25682 [HIGH] CWE-122 CVE-2020-25682: A flaw was found in dnsmasq before 2.83. A buffer overflow vulnerability was discovered in the way d A flaw was found in dnsmasq before 2.83. A buffer overflow vulnerability was discovered in the way dnsmasq extract names from DNS packets before validating them with DNSSEC data. An attacker on the network, who can create valid DNS replies, could use this flaw to cause an overflow with arbitrary data in a heap-allocated memory, possibly executing code
nvdosv
CVE-2023-50387P3HIGHCVSS 7.5fixed in 2.902024-02-14
CVE-2023-50387 [HIGH] CWE-770 CVE-2023-50387: Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow r Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an al
nvdosv
CVE-2023-50868P3HIGHCVSS 7.5≥ 0, < 2.85-1+deb11u1≥ 0, < 2.90-4~deb12u1+1 more2024-02-14
CVE-2023-50868 [HIGH] CVE-2023-50868: The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of ser The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of service (CPU consumption for SHA-1 computations) via DNSSEC responses in a random subdomain attack, aka the "NSEC3" issue. The RFC 5155 specification implies that a
osv
CVE-2009-2957P3MEDIUMCVSS 6.8PoC≤ 2.49v0.4+74 more2009-09-02
CVE-2009-2957 [MEDIUM] CWE-119 CVE-2009-2957: Heap-based buffer overflow in the tftp_request function in tftp.c in dnsmasq before 2.50, when --ena Heap-based buffer overflow in the tftp_request function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, might allow remote attackers to execute arbitrary code via a long filename in a TFTP packet, as demonstrated by a read (aka RRQ) request.
nvdosv
CVE-2017-13704P3HIGHCVSS 7.5≤ 2.772017-10-03
CVE-2017-13704 [HIGH] CWE-20 CVE-2017-13704: In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xffffffff zero's (0xffffffffffffffff in 64 bit platforms), making dnsmasq crash.
nvdosv
CVE-2020-25687P3MEDIUMCVSS 5.9fixed in 2.83vdnsmasq 2.832021-01-20
CVE-2020-25687 [MEDIUM] CWE-122 CVE-2020-25687: A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsm A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. This flaw allows a remote attacker, who can create valid DNS replies, to cause an overflow in a heap-allocated memory. This flaw is caused by the lack of length checks in rfc
nvdosv
CVE-2020-25683P3MEDIUMCVSS 5.9fixed in 2.83vdnsmasq 2.832021-01-20
CVE-2020-25683 [MEDIUM] CWE-122 CVE-2020-25683: A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsm A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. A remote attacker, who can create valid DNS replies, could use this flaw to cause an overflow in a heap-allocated memory. This flaw is caused by the lack of length checks in
nvdosv
CVE-2021-45955P3CRITICALCVSS 9.8v2.862022-01-01
CVE-2021-45955 [CRITICAL] CVE-2021-45955: Dnsmasq 2.86 has a heap-based buffer overflow in resize_packet (called from FuzzResizePacket and fuz Dnsmasq 2.86 has a heap-based buffer overflow in resize_packet (called from FuzzResizePacket and fuzz_rfc1035.c) because of the lack of a proper bounds check upon pseudo header re-insertion. NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge." However, a contributo
nvd
CVE-2009-2958P4MEDIUMCVSS 4.3PoC≤ 2.49v0.4+74 more2009-09-02
CVE-2009-2958 [MEDIUM] CWE-399 CVE-2009-2958: The tftp_request function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, allows remot The tftp_request function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a TFTP read (aka RRQ) request with a malformed blksize option.
nvdosv
CVE-2021-45952P3CRITICALCVSS 9.8v2.862022-01-01
CVE-2021-45952 [CRITICAL] CVE-2021-45952: Dnsmasq 2.86 has a heap-based buffer overflow in dhcp_reply (called from dhcp_packet and FuzzDhcp). Dnsmasq 2.86 has a heap-based buffer overflow in dhcp_reply (called from dhcp_packet and FuzzDhcp). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge.
nvd
CVE-2021-45951P3CRITICALCVSS 9.8v2.862022-01-01
CVE-2021-45951 [CRITICAL] CWE-787 CVE-2021-45951: Dnsmasq 2.86 has a heap-based buffer overflow in check_bad_address (called from check_for_bogus_wild Dnsmasq 2.86 has a heap-based buffer overflow in check_bad_address (called from check_for_bogus_wildcard and FuzzCheckForBogusWildcard). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge.
nvd
CVE-2021-45954P3CRITICALCVSS 9.8v2.862022-01-01
CVE-2021-45954 [CRITICAL] CVE-2021-45954: Dnsmasq 2.86 has a heap-based buffer overflow in extract_name (called from answer_auth and FuzzAuth) Dnsmasq 2.86 has a heap-based buffer overflow in extract_name (called from answer_auth and FuzzAuth). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge.
nvd
Thekelleys Dnsmasq vulnerabilities | cvebase