Linux Distros Unpatched Vulnerability : CVE-2021-45953

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Dnsmasq 2.86 has a heap-based buffer overflow in extractname called from hashquestions and fuzzutil.c. NOTE: the vendor's position is that CVE-2021-45951 throug...

The vulnerability of the extract_name function in the Dnsmasq DNS server allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the extractname function in the Dnsmasq DNS server is related to buffer overflow attacks. Exploiting this vulnerability can allow a remote attacker to access sensitive data, compromise its integrity, and cause service interruptions...

The vulnerability of the extract_name function in the fuzz_util.c component of the DNS server Dnsmasq allows a hacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the extractname function in the fuzzutil.c component of the DNS server Dnsmasq is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow a remote attacker to access confidential data, compromise its integrity, and cause service failures...

dnsmasq 2.73rc6 < 2.73rc8 extract_name() Function RCE

The remote dnsmasq server is running version 2.73rc6 or 2.73rc7. It is, therefore, affected by a remote code execution vulnerability due to an overflow condition in the extractname function in rfc1035.c that occurs due to improper validation of user-supplied input. An unauthenticated, remote...