PT-2021-7713 · Dnsmasq +2 · Dnsmasq +2

Name of the Vulnerable Software and Affected Versions: Dnsmasq affected versions not specified Description: The issue is related to a buffer overflow in the extract name function of the fuzz util.c component of the Dnsmasq DNS server. This could allow a remote attacker to access confidential data...

PT-2021-7716 · Dnsmasq +2 · Dnsmasq +2

Name of the Vulnerable Software and Affected Versions: Dnsmasq affected versions not specified Description: The issue is related to a buffer overflow in the extract name function of the Dnsmasq DNS server. This could allow a remote attacker to access confidential data, compromise its integrity, a...

DEBIAN-CVE-2020-25682

A flaw was found in dnsmasq before 2.83. A buffer overflow vulnerability was discovered in the way dnsmasq extract names from DNS packets before validating them with DNSSEC data. An attacker on the network, who can create valid DNS replies, could use this flaw to cause an overflow with arbitrary...

dnsmasq: heap-based buffer overflow with large memcpy in sort_rrset() when DNSSEC is enabled

A flaw was found in dnsmasq. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. This flaw allows a remote attacker, who can create valid DNS replies, to cause an overflow in a heap-allocated memory. This flaw is caused b...