Systemd resolved dns_packet_new Heap Buffer Overflow (CVE-2017-9445)

A heap buffer overflow vulnerability exists in the dnspacketnew function of systemd-resolved. This vulnerability is due to the allocation of a heap buffer of insufficient size when handling DNS responses. A malicious DNS server can exploit this vulnerability by sending a crafted DNS response...

The vulnerability of the `dns_packet_new` function in the system service of the `system-resolved` module of the Systemmd daemon in the Linux operating system allows a hacker to execute arbitrary code.

The vulnerability of the dnspacketnew function in the system service of the system-resolved manager in the Linux operating system is due to an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to cause the system-resolved service to...

UBUNTU-CVE-2017-9445

In systemd through 233, certain sizes passed to dnspacketnew in systemd-resolved can cause it to allocate a buffer that's too small. A malicious DNS server can exploit this via a response with a specially crafted TCP payload to trick systemd-resolved into allocating a buffer that's too small, and...