Search...

Ubuntu 12.04 LTS / 14.04 LTS / 14.10 / 15.04 : dnsmasq vulnerability (USN-2593-1)

2015-05-05T00:00:00

ID UBUNTU_USN-2593-1.NASL
Type nessus
Reporter Tenable
Modified 2016-05-24T00:00:00

Description

Nick Sampanis discovered that Dnsmasq incorrectly handled certain malformed DNS requests. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly obtain sensitive information.

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

                                        
                                            #
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-2593-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# &lt;http://www.ubuntu.com/usn/&gt;. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include("compat.inc");

if (description)
{
  script_id(83252);
  script_version("$Revision: 2.5 $");
  script_cvs_date("$Date: 2016/05/24 17:44:49 $");

  script_cve_id("CVE-2015-3294");
  script_osvdb_id(121174);
  script_xref(name:"USN", value:"2593-1");

  script_name(english:"Ubuntu 12.04 LTS / 14.04 LTS / 14.10 / 15.04 : dnsmasq vulnerability (USN-2593-1)");
  script_summary(english:"Checks dpkg output for updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Ubuntu host is missing one or more security-related
patches."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Nick Sampanis discovered that Dnsmasq incorrectly handled certain
malformed DNS requests. A remote attacker could use this issue to
cause Dnsmasq to crash, resulting in a denial of service, or possibly
obtain sensitive information.

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Update the affected dnsmasq, dnsmasq-base and / or dnsmasq-utils
packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dnsmasq");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dnsmasq-base");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dnsmasq-utils");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:12.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:14.04");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:14.10");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:15.04");

  script_set_attribute(attribute:"patch_publication_date", value:"2015/05/04");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/05/05");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"Ubuntu Security Notice (C) 2015-2016 Canonical, Inc. / NASL script (C) 2015-2016 Tenable Network Security, Inc.");
  script_family(english:"Ubuntu Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("ubuntu.inc");
include("misc_func.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! ereg(pattern:"^(12\.04|14\.04|14\.10|15\.04)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 12.04 / 14.04 / 14.10 / 15.04", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" &gt;!&lt; cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);

flag = 0;

if (ubuntu_check(osver:"12.04", pkgname:"dnsmasq", pkgver:"2.59-4ubuntu0.2")) flag++;
if (ubuntu_check(osver:"12.04", pkgname:"dnsmasq-base", pkgver:"2.59-4ubuntu0.2")) flag++;
if (ubuntu_check(osver:"12.04", pkgname:"dnsmasq-utils", pkgver:"2.59-4ubuntu0.2")) flag++;
if (ubuntu_check(osver:"14.04", pkgname:"dnsmasq-base", pkgver:"2.68-1ubuntu0.1")) flag++;
if (ubuntu_check(osver:"14.10", pkgname:"dnsmasq-base", pkgver:"2.71-1ubuntu0.1")) flag++;
if (ubuntu_check(osver:"15.04", pkgname:"dnsmasq-base", pkgver:"2.72-3ubuntu0.1")) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "dnsmasq / dnsmasq-base / dnsmasq-utils");
}

JSON Vulners Source

Initial Source

{"hash": "2e4ea3e0006714862d08b64d2995f4a0416df73876a77728cb61f66fd078558f", "naslFamily": "Ubuntu Local Security Checks", "id": "UBUNTU_USN-2593-1.NASL", "lastseen": "2017-10-29T13:39:31", "viewCount": 5, "hashmap": [{"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "30bc7a7df971632787403bfaeb02f2c1", "key": "cpe"}, {"hash": "22795962da8c85a31b984af070dc1a3b", "key": "cvelist"}, {"hash": "ea1bdd9185a2c3160cbbe9c0292c3d62", "key": "cvss"}, {"hash": "dce9fdead9c1300c72ee7aed19ffefc3", "key": "description"}, {"hash": "84dbe5f5a3a976716e0830d3ad023fa1", "key": "href"}, {"hash": "ddab325b78ee84639dc78b61e4febc39", "key": "modified"}, {"hash": "c9b7d00377a789a14c9bb9dab6c7168c", "key": "naslFamily"}, {"hash": "3219c26b0594baa5ff0275160f336b80", "key": "pluginID"}, {"hash": "a92b691c075be932f6b3e5694a741165", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "5000130f40e1a6ac05bcd079bbb22afe", "key": "sourceData"}, {"hash": "d75bcd0156ad5a73da3e7e627ee46f46", "key": "title"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}], "bulletinFamily": "scanner", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:dnsmasq-base", "p-cpe:/a:canonical:ubuntu_linux:dnsmasq", "cpe:/o:canonical:ubuntu_linux:15.04", "p-cpe:/a:canonical:ubuntu_linux:dnsmasq-utils", "cpe:/o:canonical:ubuntu_linux:14.10", "cpe:/o:canonical:ubuntu_linux:12.04:-:lts", "cpe:/o:canonical:ubuntu_linux:14.04"], "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "edition": 2, "enchantments": {"vulnersScore": 5.0}, "type": "nessus", "description": "Nick Sampanis discovered that Dnsmasq incorrectly handled certain malformed DNS requests. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly obtain sensitive information.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "title": "Ubuntu 12.04 LTS / 14.04 LTS / 14.10 / 15.04 : dnsmasq vulnerability (USN-2593-1)", "history": [{"bulletin": {"hash": "46b38d63a0054f061cf121b8e7e35f48409e2f9131214b97acc6655c372fdb30", "naslFamily": "Ubuntu Local Security Checks", "edition": 1, "lastseen": "2016-09-26T17:25:00", "enchantments": {}, "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "d75bcd0156ad5a73da3e7e627ee46f46", "key": "title"}, {"hash": "ddab325b78ee84639dc78b61e4febc39", "key": "modified"}, {"hash": "a92b691c075be932f6b3e5694a741165", "key": "published"}, {"hash": "dce9fdead9c1300c72ee7aed19ffefc3", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "84dbe5f5a3a976716e0830d3ad023fa1", "key": "href"}, {"hash": "3219c26b0594baa5ff0275160f336b80", "key": "pluginID"}, {"hash": "22795962da8c85a31b984af070dc1a3b", "key": "cvelist"}, {"hash": "c9b7d00377a789a14c9bb9dab6c7168c", "key": "naslFamily"}, {"hash": "ea1bdd9185a2c3160cbbe9c0292c3d62", "key": "cvss"}, {"hash": "5000130f40e1a6ac05bcd079bbb22afe", "key": "sourceData"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "bulletinFamily": "scanner", "cpe": [], "history": [], "id": "UBUNTU_USN-2593-1.NASL", "type": "nessus", "description": "Nick Sampanis discovered that Dnsmasq incorrectly handled certain malformed DNS requests. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly obtain sensitive information.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "viewCount": 3, "title": "Ubuntu 12.04 LTS / 14.04 LTS / 14.10 / 15.04 : dnsmasq vulnerability (USN-2593-1)", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "objectVersion": "1.2", "cvelist": ["CVE-2015-3294"], "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2593-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(83252);\n script_version(\"$Revision: 2.5 $\");\n script_cvs_date(\"$Date: 2016/05/24 17:44:49 $\");\n\n script_cve_id(\"CVE-2015-3294\");\n script_osvdb_id(121174);\n script_xref(name:\"USN\", value:\"2593-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS / 14.04 LTS / 14.10 / 15.04 : dnsmasq vulnerability (USN-2593-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Nick Sampanis discovered that Dnsmasq incorrectly handled certain\nmalformed DNS requests. A remote attacker could use this issue to\ncause Dnsmasq to crash, resulting in a denial of service, or possibly\nobtain sensitive information.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected dnsmasq, dnsmasq-base and / or dnsmasq-utils\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:dnsmasq\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:dnsmasq-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:dnsmasq-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:14.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:14.10\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:15.04\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/05/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/05/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2015-2016 Canonical, Inc. / NASL script (C) 2015-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(12\\.04|14\\.04|14\\.10|15\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04 / 14.04 / 14.10 / 15.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"dnsmasq\", pkgver:\"2.59-4ubuntu0.2\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"dnsmasq-base\", pkgver:\"2.59-4ubuntu0.2\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"dnsmasq-utils\", pkgver:\"2.59-4ubuntu0.2\")) flag++;\nif (ubuntu_check(osver:\"14.04\", pkgname:\"dnsmasq-base\", pkgver:\"2.68-1ubuntu0.1\")) flag++;\nif (ubuntu_check(osver:\"14.10\", pkgname:\"dnsmasq-base\", pkgver:\"2.71-1ubuntu0.1\")) flag++;\nif (ubuntu_check(osver:\"15.04\", pkgname:\"dnsmasq-base\", pkgver:\"2.72-3ubuntu0.1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"dnsmasq / dnsmasq-base / dnsmasq-utils\");\n}\n", "published": "2015-05-05T00:00:00", "pluginID": "83252", "references": [], "reporter": "Tenable", "modified": "2016-05-24T00:00:00", "href": "https://www.tenable.com/plugins/index.php?view=single&id=83252"}, "lastseen": "2016-09-26T17:25:00", "edition": 1, "differentElements": ["cpe"]}], "objectVersion": "1.3", "cvelist": ["CVE-2015-3294"], "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2593-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(83252);\n script_version(\"$Revision: 2.5 $\");\n script_cvs_date(\"$Date: 2016/05/24 17:44:49 $\");\n\n script_cve_id(\"CVE-2015-3294\");\n script_osvdb_id(121174);\n script_xref(name:\"USN\", value:\"2593-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS / 14.04 LTS / 14.10 / 15.04 : dnsmasq vulnerability (USN-2593-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Nick Sampanis discovered that Dnsmasq incorrectly handled certain\nmalformed DNS requests. A remote attacker could use this issue to\ncause Dnsmasq to crash, resulting in a denial of service, or possibly\nobtain sensitive information.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected dnsmasq, dnsmasq-base and / or dnsmasq-utils\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:dnsmasq\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:dnsmasq-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:dnsmasq-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:14.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:14.10\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:15.04\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/05/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/05/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2015-2016 Canonical, Inc. / NASL script (C) 2015-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(12\\.04|14\\.04|14\\.10|15\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04 / 14.04 / 14.10 / 15.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"dnsmasq\", pkgver:\"2.59-4ubuntu0.2\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"dnsmasq-base\", pkgver:\"2.59-4ubuntu0.2\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"dnsmasq-utils\", pkgver:\"2.59-4ubuntu0.2\")) flag++;\nif (ubuntu_check(osver:\"14.04\", pkgname:\"dnsmasq-base\", pkgver:\"2.68-1ubuntu0.1\")) flag++;\nif (ubuntu_check(osver:\"14.10\", pkgname:\"dnsmasq-base\", pkgver:\"2.71-1ubuntu0.1\")) flag++;\nif (ubuntu_check(osver:\"15.04\", pkgname:\"dnsmasq-base\", pkgver:\"2.72-3ubuntu0.1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"dnsmasq / dnsmasq-base / dnsmasq-utils\");\n}\n", "published": "2015-05-05T00:00:00", "pluginID": "83252", "references": [], "reporter": "Tenable", "modified": "2016-05-24T00:00:00", "href": "https://www.tenable.com/plugins/index.php?view=single&id=83252"}

{"result": {"cve": [{"id": "CVE-2015-3294", "type": "cve", "title": "CVE-2015-3294", "description": "The tcp_request function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setup_reply function, which allows remote attackers to read process memory and cause a denial of service (out-of-bounds read and crash) via a malformed DNS request.", "published": "2015-05-08T10:59:05", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3294", "cvelist": ["CVE-2015-3294"], "lastseen": "2017-04-18T15:56:47"}], "ubuntu": [{"id": "USN-2593-1", "type": "ubuntu", "title": "Dnsmasq vulnerability", "description": "Nick Sampanis discovered that Dnsmasq incorrectly handled certain malformed DNS requests. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly obtain sensitive information.", "published": "2015-05-04T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "https://usn.ubuntu.com/2593-1/", "cvelist": ["CVE-2015-3294"], "lastseen": "2018-03-29T18:19:19"}], "nessus": [{"id": "DEBIAN_DLA-225.NASL", "type": "nessus", "title": "Debian DLA-225-1 : dnsmasq security update", "description": "The following vulnerability vulnerability was found in dnsmasq :\n\nCVE-2015-3294\n\nRemote attackers could read process memory and cause DoS via malformed DNS requests.\n\nFor Debian 6 'Squeeze', these issues have been fixed in dnsmasq version 2.55-2+deb6u1.\n\nNOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2015-05-21T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=83747", "cvelist": ["CVE-2015-3294"], "lastseen": "2018-07-07T01:53:33"}, {"id": "SUSE_SU-2015-1015-1.NASL", "type": "nessus", "title": "SUSE SLED11 / SLES11 Security Update : dnsmasq (SUSE-SU-2015:1015-1)", "description": "The DNS server dnsmasq was updated to fix one security issue and one non-security bug :\n\nCVE-2015-3294: A remote unauthenticated attacker could have caused a denial of service (DoS) or read memory from the heap, potentially disclosing information such as performed DNS queries or encryption keys. (bsc#928867)\n\nbsc#923144: When answer to an upstream query is a CNAME pointing to an A/AAAA record which is present locally (/etc/hosts), allow caching when the upstream and local A/AAAA records have the same value.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2015-06-10T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=84081", "cvelist": ["CVE-2015-3294"], "lastseen": "2017-10-29T13:38:11"}, {"id": "EULEROS_SA-2016-1044.NASL", "type": "nessus", "title": "EulerOS 2.0 SP1 : dnsmasq (EulerOS-SA-2016-1044)", "description": "According to the versions of the dnsmasq package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :\n\n - Dnsmasq is lightweight, easy to configure DNS forwarder and DHCP server. It is designed to provide DNS and, optionally, DHCP, to a small network. It can serve the names of local machines which are not in the global DNS. The DHCP server integrates with the DNS server and allows machines with DHCP-allocated addresses to appear in the DNS with names configured either in each host or in a central configuration file. Dnsmasq supports static and dynamic DHCP leases and BOOTP for network booting of diskless machines.\n\n - Security Fix(es)\n\n - The tcp_request function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setup_reply function, which allows remote attackers to read process memory and cause a denial of service (out-of-bounds read and crash) via a malformed DNS request.(CVE-2015-3294)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2017-05-01T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=99807", "cvelist": ["CVE-2015-3294"], "lastseen": "2018-07-21T08:10:50"}, {"id": "OPENSUSE-2015-359.NASL", "type": "nessus", "title": "openSUSE Security Update : dnsmasq (openSUSE-2015-359)", "description": "The DNS server dnsmasq was updated to fix one security issue.\n\nThe following vulnerability was fixed :\n\n - CVE-2015-3294: A remote unauthenticated attacker could have caused a denial of service (DoS) or read heap memory, potentially disclosing information such as performed DNS queries or encryption keys. (bsc#928867)", "published": "2015-05-13T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=83398", "cvelist": ["CVE-2015-3294"], "lastseen": "2017-10-29T13:33:54"}, {"id": "FREEBSD_PKG_37569EB7012511E59D98080027EF73EC.NASL", "type": "nessus", "title": "FreeBSD : dnsmasq -- data exposure and denial of service (37569eb7-0125-11e5-9d98-080027ef73ec)", "description": "Nick Sampanis reported a potential memory exposure and denial of service vulnerability against dnsmasq 2.72. The CVE entry summarizes this as :\n\nThe tcp_request function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setup_reply function, which allows remote attackers to read process memory and cause a denial of service (out-of-bounds read and crash) via a malformed DNS request.'", "published": "2015-05-26T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=83793", "cvelist": ["CVE-2015-3294"], "lastseen": "2017-10-29T13:33:29"}, {"id": "SUSE_SU-2015-0979-1.NASL", "type": "nessus", "title": "SUSE SLED12 / SLES12 Security Update : dnsmasq (SUSE-SU-2015:0979-1)", "description": "The DNS server dnsmasq was updated to fix one security issue and one non-security bug.\n\nThe following vulnerability was fixed :\n\n - CVE-2015-3294: A remote unauthenticated attacker could have caused a denial of service (DoS) or read heap memory, potentially disclosing information such as performed DNS queries or encryption keys. (bsc#928867)\n\nThe following bug was fixed :\n\n - bsc#923144: When answer to an upstream query is a CNAME pointing to an A/AAAA record which is present locally (/etc/hosts), allow caching when the upstream and local A/AAAA records have the same value.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2015-06-02T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=83948", "cvelist": ["CVE-2015-3294"], "lastseen": "2017-10-29T13:41:58"}, {"id": "DEBIAN_DSA-3251.NASL", "type": "nessus", "title": "Debian DSA-3251-1 : dnsmasq - security update", "description": "Nick Sampanis discovered that dnsmasq, a small caching DNS proxy and DHCP/TFTP server, did not properly check the return value of the setup_reply() function called during a TCP connection, which is used then as a size argument in a function which writes data on the client's connection. A remote attacker could exploit this issue via a specially crafted DNS request to cause dnsmasq to crash, or potentially to obtain sensitive information from process memory.", "published": "2015-05-06T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=83253", "cvelist": ["CVE-2015-3294"], "lastseen": "2018-07-12T18:21:07"}, {"id": "GENTOO_GLSA-201512-01.NASL", "type": "nessus", "title": "GLSA-201512-01 : Dnsmasq: Denial of Service", "description": "The remote host is affected by the vulnerability described in GLSA-201512-01 (Dnsmasq: Denial of Service)\n\n An out-of-bounds read vulnerability has been found in the tcp_request function in Dnsmasq.\n Impact :\n\n A remote attacker could send a specially crafted DNS request, possibly resulting in a Denial of Service condition.\n Workaround :\n\n There is no known workaround at this time.", "published": "2015-12-18T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=87484", "cvelist": ["CVE-2015-3294"], "lastseen": "2017-10-29T13:36:24"}, {"id": "DNSMASQ_DOS-CVE-2015-3294.NASL", "type": "nessus", "title": "dnsmasq < 2.73rc4 setup_reply() Function Return Value Checking Information Disclosure", "description": "The remote dnsmasq server is running a version prior to 2.73rc4. It is, therefore, affected by an information disclosure vulnerability due not properly checking the return value from the setup_reply() function during TCP connections. An unauthenticated, remote attacker can exploit this to disclose sensitive information.", "published": "2015-12-22T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=87596", "cvelist": ["CVE-2015-3294"], "lastseen": "2018-07-12T17:33:02"}, {"id": "SUSE_SU-2017-2616-1.NASL", "type": "nessus", "title": "SUSE SLES12 Security Update : dnsmasq (SUSE-SU-2017:2616-1)", "description": "This update for dnsmasq fixes the following issues. Remedy the following security issues :\n\n - CVE-2017-14491: 2 byte heap based overflow.\n [bsc#1060354]\n\n - CVE-2017-14492: heap based overflow. [bsc#1060355]\n\n - CVE-2017-14493: stack based overflow. [bsc#1060360]\n\n - CVE-2017-14494: DHCP - info leak. [bsc#1060361]\n\n - CVE-2017-14495: DNS - OOM DoS. [bsc#1060362]\n\n - CVE-2017-14496: DNS - DoS Integer underflow.\n [bsc#1060364]\n\n - Prevent a man-in-the-middle attack (bsc#972164, fate#321175). Furthermore, the following issues have been fixed :\n\n - Fix DHCP relaying, broken in 2.76 and 2.77.\n\n - Update to version 2.78 (fate#321175, fate#322030, bsc#1035227).\n\n - Fix PXE booting for UEFI architectures (fate#322030).\n\n - Drop PrivateDevices=yes which breaks logging (bsc#902511, bsc#904537)\n\n - Build with support for DNSSEC (fate#318323, bsc#908137).\n Please note that this update brings a (small) potential incompatibility in the handling of 'basename' in\n --pxe-service. Please read the CHANGELOG and the documentation if you are using this option.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2017-10-03T00:00:00", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=103637", "cvelist": ["CVE-2017-14496", "CVE-2017-14494", "CVE-2017-14492", "CVE-2015-8899", "CVE-2017-14491", "CVE-2017-14493", "CVE-2017-14495", "CVE-2015-3294"], "lastseen": "2018-02-02T07:04:38"}], "debian": [{"id": "DSA-3251", "type": "debian", "title": "dnsmasq -- security update", "description": "Nick Sampanis discovered that dnsmasq, a small caching DNS proxy and DHCP/TFTP server, did not properly check the return value of the setup_reply() function called during a TCP connection, which is used then as a size argument in a function which writes data on the client's connection. A remote attacker could exploit this issue via a specially crafted DNS request to cause dnsmasq to crash, or potentially to obtain sensitive information from process memory.\n\nFor the oldstable distribution (wheezy), this problem has been fixed in version 2.62-3+deb7u2.\n\nFor the stable distribution (jessie), this problem has been fixed in version 2.72-3+deb8u1.\n\nFor the testing distribution (stretch) and the unstable distribution (sid), this problem will be fixed soon.\n\nWe recommend that you upgrade your dnsmasq packages.", "published": "2015-05-05T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "http://www.debian.org/security/dsa-3251", "cvelist": ["CVE-2015-3294"], "lastseen": "2018-07-21T01:43:07"}, {"id": "DLA-225", "type": "debian", "title": "dnsmasq -- LTS security update", "description": "The following vulnerability vulnerability was found in dnsmasq:\n\n * [CVE-2015-3294](<https://security-tracker.debian.org/tracker/CVE-2015-3294>)\n\nRemote attackers could read process memory and cause DoS via malformed DNS requests.\n\nFor Debian 6 Squeeze, these issues have been fixed in dnsmasq version 2.55-2+deb6u1.", "published": "2015-05-20T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "http://www.debian.org/security/2015/dla-225", "cvelist": ["CVE-2015-3294"], "lastseen": "2016-09-02T12:57:04"}], "freebsd": [{"id": "37569EB7-0125-11E5-9D98-080027EF73EC", "type": "freebsd", "title": "dnsmasq -- data exposure and denial of service", "description": "\nNick Sampanis reported a potential memory exposure and denial of service vulnerability against dnsmasq 2.72. The CVE entry summarizes this as:\n\t\nThe tcp_request function in Dnsmasq before 2.73rc4\n\t does not properly handle the return value of the setup_reply function,\n\t which allows remote attackers to read process memory and cause a\n\t denial of service (out-of-bounds read and crash) via a malformed DNS\n\t request.\"\n\n", "published": "2015-04-07T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "https://vuxml.freebsd.org/freebsd/37569eb7-0125-11e5-9d98-080027ef73ec.html", "cvelist": ["CVE-2015-3294"], "lastseen": "2016-09-26T17:24:19"}], "gentoo": [{"id": "GLSA-201512-01", "type": "gentoo", "title": "Dnsmasq: Denial of Service", "description": "### Background\n\nDnsmasq is a lightweight, easy to configure DNS forwarder and DHCP server. \n\n### Description\n\nAn out-of-bounds read vulnerability has been found in the tcp_request function in Dnsmasq. \n\n### Impact\n\nA remote attacker could send a specially crafted DNS request, possibly resulting in a Denial of Service condition. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll Dnsmasq users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=net-dns/dnsmasq-2.72-r2\"", "published": "2015-12-17T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "https://security.gentoo.org/glsa/201512-01", "cvelist": ["CVE-2015-3294"], "lastseen": "2016-09-06T19:46:20"}], "openvas": [{"id": "OPENVAS:1361412562310703251", "type": "openvas", "title": "Debian Security Advisory DSA 3251-1 (dnsmasq - security update)", "description": "Nick Sampanis discovered that dnsmasq,\na small caching DNS proxy and DHCP/TFTP server, did not properly check the return\nvalue of the setup_reply() function called during a TCP connection, which is used\nthen as a size argument in a function which writes data on the client", "published": "2015-05-05T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310703251", "cvelist": ["CVE-2015-3294"], "lastseen": "2018-04-06T11:24:59"}, {"id": "OPENVAS:703251", "type": "openvas", "title": "Debian Security Advisory DSA 3251-1 (dnsmasq - security update)", "description": "Nick Sampanis discovered that dnsmasq,\na small caching DNS proxy and DHCP/TFTP server, did not properly check the return\nvalue of the setup_reply() function called during a TCP connection, which is used\nthen as a size argument in a function which writes data on the client", "published": "2015-05-05T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=703251", "cvelist": ["CVE-2015-3294"], "lastseen": "2017-07-24T12:52:31"}, {"id": "OPENVAS:1361412562310121423", "type": "openvas", "title": "Gentoo Linux Local Check: https://security.gentoo.org/glsa/201512-01", "description": "Gentoo Linux Local Security Checks https://security.gentoo.org/glsa/201512-01", "published": "2015-12-18T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310121423", "cvelist": ["CVE-2015-3294"], "lastseen": "2018-04-09T11:28:15"}, {"id": "OPENVAS:1361412562310842192", "type": "openvas", "title": "Ubuntu Update for dnsmasq USN-2593-1", "description": "Check the version of dnsmasq", "published": "2015-05-05T00:00:00", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310842192", "cvelist": ["CVE-2015-3294"], "lastseen": "2018-04-30T14:06:04"}], "suse": [{"id": "SUSE-SU-2017:2619-1", "type": "suse", "title": "Security update for dnsmasq (important)", "description": "This update for dnsmasq fixes the following security issues:\n\n - CVE-2017-14491: 2 byte heap based overflow. [bsc#1060354]\n - CVE-2017-14492: heap based overflow. [bsc#1060355]\n - CVE-2017-14493: stack based overflow. [bsc#1060360]\n - CVE-2017-14494: DHCP - info leak. [bsc#1060361]\n - CVE-2017-14495: DNS - OOM DoS. [bsc#1060362]\n - CVE-2017-14496: DNS - DoS Integer underflow. [bsc#1060364]\n\n This update brings a (small) potential incompatibility in the handling of\n "basename" in --pxe-service. Please read the CHANGELOG and the\n documentation if you are using this option.\n\n", "published": "2017-10-02T21:11:28", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00005.html", "cvelist": ["CVE-2017-14496", "CVE-2017-14494", "CVE-2017-14492", "CVE-2015-8899", "CVE-2017-14491", "CVE-2017-14493", "CVE-2017-14495", "CVE-2015-3294"], "lastseen": "2017-10-02T23:53:52"}, {"id": "SUSE-SU-2017:2617-1", "type": "suse", "title": "Security update for dnsmasq (important)", "description": "This update for dnsmasq fixes the following security issues:\n\n - CVE-2017-14491: 2 byte heap based overflow. [bsc#1060354]\n - CVE-2017-14492: heap based overflow. [bsc#1060355]\n - CVE-2017-14493: stack based overflow. [bsc#1060360]\n - CVE-2017-14494: DHCP - info leak. [bsc#1060361]\n - CVE-2017-14495: DNS - OOM DoS. [bsc#1060362]\n - CVE-2017-14496: DNS - DoS Integer underflow. [bsc#1060364]\n\n This update brings a (small) potential incompatibility in the handling of\n "basename" in --pxe-service. Please read the CHANGELOG and the\n documentation if you are using this option.\n\n", "published": "2017-10-02T21:09:17", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00004.html", "cvelist": ["CVE-2017-14496", "CVE-2017-14494", "CVE-2017-14492", "CVE-2015-8899", "CVE-2017-14491", "CVE-2017-14493", "CVE-2017-14495", "CVE-2015-3294"], "lastseen": "2017-10-02T23:53:52"}, {"id": "SUSE-SU-2017:2616-1", "type": "suse", "title": "Security update for dnsmasq (important)", "description": "This update for dnsmasq fixes the following issues.\n\n Remedy the following security issues:\n\n - CVE-2017-14491: 2 byte heap based overflow. [bsc#1060354]\n - CVE-2017-14492: heap based overflow. [bsc#1060355]\n - CVE-2017-14493: stack based overflow. [bsc#1060360]\n - CVE-2017-14494: DHCP - info leak. [bsc#1060361]\n - CVE-2017-14495: DNS - OOM DoS. [bsc#1060362]\n - CVE-2017-14496: DNS - DoS Integer underflow. [bsc#1060364]\n - Prevent a man-in-the-middle attack (bsc#972164, fate#321175).\n\n Furthermore, the following issues have been fixed:\n\n - Fix DHCP relaying, broken in 2.76 and 2.77.\n - Update to version 2.78 (fate#321175, fate#322030, bsc#1035227).\n - Fix PXE booting for UEFI architectures (fate#322030).\n - Drop PrivateDevices=yes which breaks logging (bsc#902511, bsc#904537)\n - Build with support for DNSSEC (fate#318323, bsc#908137).\n\n Please note that this update brings a (small) potential incompatibility in\n the handling of "basename" in --pxe-service. Please read the CHANGELOG and\n the documentation if you are using this option.\n\n", "published": "2017-10-02T21:07:18", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}, "href": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00003.html", "cvelist": ["CVE-2017-14496", "CVE-2017-14494", "CVE-2017-14492", "CVE-2015-8899", "CVE-2017-14491", "CVE-2017-14493", "CVE-2017-14495", "CVE-2015-3294"], "lastseen": "2017-10-02T23:53:52"}]}}