SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


Try our Premium Alert Service
 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service





Category:   Application (Generic)  >   Dnsmasq Vendors:   Kelley, Simon
Dnsmasq Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Potentially Sensitive Information
SecurityTracker Alert ID:  1039474
SecurityTracker URL:  http://securitytracker.com/id/1039474
CVE Reference:   CVE-2017-13704, CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496   (Links to External Site)
Date:  Oct 2 2017
Impact:   Denial of service via network, Disclosure of system information, Disclosure of user information, Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to 2.78
Description:   Multiple vulnerabilities were reported in Dnsmasq. A remote user can execute arbitrary code on the target system. A remote user can cause the target service to crash. A remote user can obtain potentially sensitive information on the target system.

A remote user can send specially crafted DNS packets to trigger a heap overflow and execute arbitrary code on the target system [CVE-2017-14491].

A remote user on the local network can send specially crafted IPv6 router advertisement (RA) messages to trigger a heap overflow and execute arbitrary code on the target system [CVE-2017-14492]. Systems using the enable-ra, ra-only, slaac,
ra-names, ra-advrouter, or ra-stateless configuration options are affected.

A remote user on the local network can send a specially crafted DHCPv6 request to trigger a stack overflow and execute arbitrary code on the target system [CVE-2017-14493].

A remote user on the local network can send specially crafted DHCPv6 packets to trigger a flaw in the DHCPv6 relay code and obtain potentially sensitive information from process memory on the target system [CVE-2017-14494].

A remote user can send specially crafted DNS packets to cause the add_pseudoheader() function to allocate memory that is never freed, consuming excessive memory on the target system [CVE-2017-14495].

A remote user can send specially crafted DNS packets to trigger an integer underflow and subsequent buffer over-read error in the EDNS0 code and cause the target service to crash [CVE-2017-14496]. Systems using the add-mac, add-cpe-id, or add-subnet configuration options are affected.

A remote user can send a specially crafted DNS query to cause the target service to crash, due to a regression error in a security fix in version 2.77 [CVE-2017-13704].

Felix Wilhelm, Fermin J. Serna, Gabriel Campana, Kevin Hamacher, and Ron Bowes of the Google Security Team and Christian Kujau, Arne Woerner, Juan Manuel Fernandez, and Kevin Darbyshire-Bryant reported these vulnerabilities.

Impact:   A remote user can execute arbitrary code on the target system.

A remote user can cause the target service to crash.

A remote user on the local network can obtain potentially sensitive information from process memory on the target system.

Solution:   The vendor has issued a fix (2.78).

The vendor advisory is available at:

http://www.thekelleys.org.uk/dnsmasq/CHANGELOG

Vendor URL:  www.thekelleys.org.uk/dnsmasq/doc.html (Links to External Site)
Cause:   Access control error, Boundary error, Resource error
Underlying OS:  Linux (Any), UNIX (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Oct 2 2017 (Ubuntu Issues Fix) Dnsmasq Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Potentially Sensitive Information
Ubuntu has issued a fix for Ubuntu Linux 14.04 LTS, 16.04 LTS, and 17.04.
Oct 2 2017 (Red Hat Issues Fix) Dnsmasq Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Potentially Sensitive Information
Red Hat has issued a fix for Red Hat Enterprise Linux 6.
Oct 2 2017 (Red Hat Issues Fix) Dnsmasq Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Potentially Sensitive Information
Red Hat has issued a fix for Red Hat Enterprise Linux 6.2, 6.4, 6.5, 6.6, and 6.7.
Oct 2 2017 (Red Hat Issues Fix) Dnsmasq Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Potentially Sensitive Information
Red Hat has issued a fix for Red Hat Enterprise Linux.
Oct 3 2017 (Red Hat Issues Fix) Dnsmasq Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Potentially Sensitive Information
Red Hat has issued a fix for Red Hat Enterprise Linux 5.
Oct 3 2017 (Red Hat Issues Fix) Dnsmasq Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Potentially Sensitive Information
Red Hat has issued a fix for Red Hat Enterprise Linux 7.2 and 7.3.
Oct 3 2017 (Red Hat Issues Fix) Dnsmasq Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Potentially Sensitive Information
Red Hat has issued a fix for Red Hat Enterprise Linux 7.
Oct 3 2017 (CentOS Issues Fix) Dnsmasq Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Potentially Sensitive Information
CentOS has issued a fix for CentOS 6.
Oct 3 2017 (CentOS Issues Fix) Dnsmasq Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Potentially Sensitive Information
CentOS has issued a fix for CentOS 7.
Oct 3 2017 (Oracle Issues Fix for Oracle Linux) Dnsmasq Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Potentially Sensitive Information
Oracle has issued a fix for Oracle Linux 6.
Oct 3 2017 (Oracle Issues Fix for Oracle Linux) Dnsmasq Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Potentially Sensitive Information
Oracle has issued a fix for Oracle Linux 7.
Oct 3 2017 (Oracle Issues Fix for Oracle Linux) Dnsmasq Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Potentially Sensitive Information
Oracle has issued a fix for Oracle Linux 5.
Oct 3 2017 (Ubuntu Issues Fix) Dnsmasq Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Potentially Sensitive Information
Ubuntu has issued a fix for Ubuntu Linux 12.04 ESM.
Oct 16 2017 (Aruba Issues Fix for ArubaOS) Dnsmasq Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Obtain Potentially Sensitive Information
Aruba has issued a fix for ArubaOS.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2018, SecurityGlobal.net LLC