Dnsmasq Security Vulnerabilities and Issues — Dnsmasq CVE List

Lucene search

ThekelleysDnsmasq

10 matches found

CVE•added 2017/10/03 1:29 a.m.•745 views

CVE-2017-14493

Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DHCPv6 request.

9.8CVSS9AI score0.05615EPSS

CVE•added 2017/10/04 1:29 a.m.•582 views

CVE-2017-14491

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.

9.8CVSS9.1AI score0.52378EPSS

CVE•added 2022/01/01 12:15 a.m.•573 views

CVE-2021-45957

Dnsmasq 2.86 has a heap-based buffer overflow in answer_request (called from FuzzAnswerTheRequest and fuzz_rfc1035.c). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge.

9.8CVSS9.4AI score0.00046EPSS

CVE•added 2017/10/03 1:29 a.m.•479 views

CVE-2017-14492

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted IPv6 router advertisement request.

9.8CVSS9AI score0.92641EPSS

CVE•added 2022/01/01 12:15 a.m.•206 views

CVE-2021-45951

Dnsmasq 2.86 has a heap-based buffer overflow in check_bad_address (called from check_for_bogus_wildcard and FuzzCheckForBogusWildcard). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge.

9.8CVSS9.4AI score0.00046EPSS

CVE•added 2022/01/01 12:15 a.m.•201 views

CVE-2021-45956

Dnsmasq 2.86 has a heap-based buffer overflow in print_mac (called from log_packet and dhcp_reply). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge.

9.8CVSS9.4AI score0.00046EPSS

CVE•added 2022/01/01 12:15 a.m.•149 views

CVE-2021-45955

Dnsmasq 2.86 has a heap-based buffer overflow in resize_packet (called from FuzzResizePacket and fuzz_rfc1035.c) because of the lack of a proper bounds check upon pseudo header re-insertion. NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabili...

9.8CVSS9.5AI score0.00046EPSS

CVE•added 2022/01/01 12:15 a.m.•130 views

CVE-2021-45954

Dnsmasq 2.86 has a heap-based buffer overflow in extract_name (called from answer_auth and FuzzAuth). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge.

9.8CVSS9.4AI score0.00046EPSS

CVE•added 2022/01/01 12:15 a.m.•124 views

CVE-2021-45952

Dnsmasq 2.86 has a heap-based buffer overflow in dhcp_reply (called from dhcp_packet and FuzzDhcp). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge.

9.8CVSS9.4AI score0.00046EPSS

CVE•added 2022/01/01 12:15 a.m.•124 views

CVE-2021-45953

Dnsmasq 2.86 has a heap-based buffer overflow in extract_name (called from hash_questions and fuzz_util.c). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge.

9.8CVSS9.4AI score0.00046EPSS