21 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-3294
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The tcprequest function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setupreply function, which allows remote attackers to read...
RHEL 7 : dnsmasq (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dnsmasq: unchecked return value of the setupreply function CVE-2015-3294 - dnsmasq: insecure default...
RHEL 5 : dnsmasq (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libvirt+dnsmasq: DNS configured to answer DNS queries from non-virtual networks CVE-2012-3411 - dnsmasq:...
Debian: Security Advisory (DLA-225-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2015-0214)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:1015-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:0979-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
dnsmasq < 2.73rc4 setup_reply() Function Return Value Checking Information Disclosure
The remote dnsmasq server is running a version prior to 2.73rc4. It is, therefore, affected by an information disclosure vulnerability due not properly checking the return value from the setupreply function during TCP connections. An unauthenticated, remote attacker can exploit this to disclose...
Gentoo Security Advisory GLSA 201512-01
Gentoo Linux Local Security Checks GLSA 201512-01 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
GLSA-201512-01 : Dnsmasq: Denial of Service
The remote host is affected by the vulnerability described in GLSA-201512-01 Dnsmasq: Denial of Service An out-of-bounds read vulnerability has been found in the tcprequest function in Dnsmasq. Impact : A remote attacker could send a specially crafted DNS request, possibly resulting in a Denial o...
SUSE SLED11 / SLES11 Security Update : dnsmasq (SUSE-SU-2015:1015-1)
The DNS server dnsmasq was updated to fix one security issue and one non-security bug : CVE-2015-3294: A remote unauthenticated attacker could have caused a denial of service DoS or read memory from the heap, potentially disclosing information such as performed DNS queries or encryption keys...
Debian DLA-225-1 : dnsmasq security update
The following vulnerability vulnerability was found in dnsmasq : CVE-2015-3294 Remote attackers could read process memory and cause DoS via malformed DNS requests. For Debian 6 'Squeeze', these issues have been fixed in dnsmasq version 2.55-2+deb6u1. NOTE: Tenable Network Security has extracted t...
[SECURITY] [DLA 225-1] dnsmasq security update
Package : dnsmasq Version : 2.55-2+deb6u1 CVE ID : CVE-2015-3294 Debian Bug : 783459 The following vulnerability vulnerability was found in dnsmasq: CVE-2015-3294 Remote attackers could read process memory and cause DoS via malformed DNS requests. For Debian 6 “Squeeze”, these issues have been...
DLA-225-1 dnsmasq - security update
Bulletin has no description...
openSUSE Security Update : dnsmasq (openSUSE-2015-359)
The DNS server dnsmasq was updated to fix one security issue. The following vulnerability was fixed : - CVE-2015-3294: A remote unauthenticated attacker could have caused a denial of service DoS or read heap memory, potentially disclosing information such as performed DNS queries or encryption...
Updated dnsmasq packages fix CVE-2015-3294
Updated dnsmasq packages fix security vulnerability: Dnsmasq could be made to crash or expose sensitive information if it received specially crafted network traffic CVE-2015-3294...
CVE-2015-3294
The tcprequest function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setupreply function, which allows remote attackers to read process memory and cause a denial of service out-of-bounds read and crash via a malformed DNS request...
CVE-2015-3294
CVE-2015-3294 affects dnsmasq prior to 2.73rc4. The vulnerability lies in the tcp_request path where the return value of setup_reply is not properly handled, enabling a remote attacker to read process memory and cause a denial of service (out-of-bounds read and crash) via a malformed DNS request....
[SECURITY] [DSA 3251-1] dnsmasq security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3251-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso May 05, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3251-1] dnsmasq security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3251-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso May 05, 2015 http://www.debian.org/security/faq -...