Search CVE reports
1 – 10 of 52 results
Heap OOB read resulting in segfault on crafted DNS packets.
1 affected package
dnsmasq
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| dnsmasq | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 client subnet information.
1 affected package
dnsmasq
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| dnsmasq | Fixed | Fixed | Fixed | Fixed | Fixed |
A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via a crafted DHCPv6 packet.
1 affected package
dnsmasq
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| dnsmasq | Fixed | Fixed | Fixed | Fixed | Fixed |
Heap OOB read on crafted DNS packet when DNSSEC validation is enabled.
1 affected package
dnsmasq
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| dnsmasq | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
A Denial of Service (DoS) vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via a crafted DNS packet.
1 affected package
dnsmasq
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| dnsmasq | Fixed | Fixed | Fixed | Fixed | Fixed |
dnsmasqs extract_name() function can be abused to cause a heap buffer overflow, allowing an attacker to inject false DNS cache entries, which could result in DNS lookups to redirect to an attacker-controlled IP address, or to cause a DoS.
1 affected package
dnsmasq
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| dnsmasq | Fixed | Fixed | Fixed | Fixed | Fixed |
(A flaw was found in dnsmasq. A remote attacker could exploit an out-of ...)
1 affected package
dnsmasq
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| dnsmasq | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
Some fixes available 2 of 5
Dnsmasq-utils 2.79-1 contains a buffer overflow vulnerability in the dhcp_release utility that allows attackers to cause a denial of service by supplying excessive input. Attackers can trigger a core dump and terminate the...
1 affected package
dnsmasq
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| dnsmasq | Not affected | Not affected | Fixed | Fixed | Needs evaluation |
dnsmasq 2.9 is vulnerable to Integer Overflow via forward_query.
1 affected package
dnsmasq
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| dnsmasq | — | Not affected | Fixed | Fixed | Fixed |
Some fixes available 29 of 40
The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of service (CPU consumption for SHA-1 computations) via DNSSEC responses in a random...
7 affected packages
bind9, isc-dhcp, pdns-recursor, dnsmasq, unbound...
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| bind9 | Fixed | Fixed | Fixed | Fixed | Fixed |
| isc-dhcp | Needs evaluation | Needs evaluation | Not affected | Not affected | Not affected |
| pdns-recursor | Not affected | Not affected | Needs evaluation | Ignored | Ignored |
| dnsmasq | Fixed | Fixed | Fixed | Fixed | Fixed |
| unbound | Fixed | Fixed | Fixed | Fixed | Ignored |
| knot-resolver | Not affected | Not affected | Needs evaluation | Ignored | Ignored |
| bind9-libs | Not in release | Not in release | Needs evaluation | Ignored | Not in release |