Lucene search

Arbitrary Code Execution

🗓️ 20 Jan 2021 16:21:41Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 49 Views

dnsmasq vulnerable to arbitrary code execution in 'rfc1035.c:extract_name()` functio

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 129
Cvelist	CVE-2020-25682	20 Jan 202116:28	–	cvelist
RedhatCVE	CVE-2020-25682	19 Jan 202112:18	–	redhatcve
Check Point Advisories	DNSmasq Out-of-Bounds Write (CVE-2020-25682)	20 Sep 202200:00	–	checkpoint_advisories
Prion	Buffer overflow	20 Jan 202117:15	–	prion
AlpineLinux	CVE-2020-25682	20 Jan 202117:15	–	alpinelinux
OSV	CVE-2020-25682	20 Jan 202117:15	–	osv
OSV	dnsmasq - security update	22 Mar 202100:00	–	osv
OSV	RHSA-2021:0151 Red Hat Security Advisory: dnsmasq security update	29 Sep 202417:51	–	osv
OSV	RHSA-2021:0150 Red Hat Security Advisory: dnsmasq security update	29 Sep 202417:51	–	osv
OSV	dnsmasq - security update	2 Feb 202100:00	–	osv

Vulners

Node

dnsmasq dnsmasqMatch2.81-r0os

AND

alpinelinux alpine_linuxMatch3.12

apache groovyMatch2.81-4build1debian

AND

apache groovyMatch2.82-1ubuntu1debian

AND

debian debian_linux

focal focalMatch2.80-1.1ubuntu1debian

AND

debian debian_linux

xenial xenialMatch2.75-1ubuntu0.16.04.5debian

AND

debian debian_linux

dnsmasq dnsmasqMatch2.82-1debian

AND

debian debian_linuxMatch999

dnsmasq dnsmasqMatch2.80-r5os

AND

alpinelinux alpine_linuxMatch3.11

dnsmasq dnsmasqMatch2.82-1debian

AND

debian debian_linuxMatch11

dnsmasq dnsmasqMatch2.80-r4os

AND

alpinelinux alpine_linuxMatch3.10

devel develMatch2.82-1ubuntu1debian

AND

devel develMatch2.81-4build1debian

AND

debian debian_linux

dnsmasq dnsmasqMatch2.76-5+deb9u2debian

AND

debian debian_linuxMatch9

dnsmasq dnsmasqMatch2.80-r5os

AND

dnsmasq dnsmasqMatch2.81-r0os

AND

alpinelinux alpine_linuxMatchedge

hirsute hirsuteMatch2.82-1ubuntu1debian

AND

debian debian_linux

dnsmasq dnsmasqMatch2.79_6.el8

dnsmasq dnsmasqMatch2.79_11.el8

dnsmasq dnsmasqMatch2.79_4.el8

dnsmasq dnsmasqMatch2.79_11.el8_2.1

Source	Link
lists	www.lists.debian.org/debian-lts-announce/2021/03/msg00027.html
secdb	www.secdb.alpinelinux.org/v3.12/main.yaml
debian	www.debian.org/security/2021/dsa-4844
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QGB7HL3OWHTLEPSMLDGOMXQKG3KM2QME/
lists	www.lists.fedoraproject.org/archives/list/[email protected]/message/QGB7HL3OWHTLEPSMLDGOMXQKG3KM2QME/
lists	www.lists.fedoraproject.org/archives/list/[email protected]/message/WYW3IR6APUSKOYKL5FT3ACTIHWHGQY32/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WYW3IR6APUSKOYKL5FT3ACTIHWHGQY32/
security	www.security.gentoo.org/glsa/202101-17
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
jsof-tech	www.jsof-tech.com/disclosures/dnspooq/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Jan 2021 16:41Current

4.1Medium risk

Vulners AI Score4.1

CVSS28.3

CVSS38.1

EPSS0.37175