Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.
2017-10-04T01:29:02.870
2025-04-20T01:37:25.860
Deferred
CVSSv3.1: 9.8 (CRITICAL)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | thekelleys | dnsmasq | ≤ 2.77 | Yes |
Operating System | redhat | enterprise_linux_desktop | 6.0 | Yes |
Operating System | redhat | enterprise_linux_desktop | 7.0 | Yes |
Operating System | redhat | enterprise_linux_server | 6.0 | Yes |
Operating System | redhat | enterprise_linux_server | 7.0 | Yes |
Operating System | redhat | enterprise_linux_workstation | 6.0 | Yes |
Operating System | redhat | enterprise_linux_workstation | 7.0 | Yes |
Operating System | canonical | ubuntu_linux | 12.04 | Yes |
Operating System | canonical | ubuntu_linux | 12.04 | Yes |
Operating System | canonical | ubuntu_linux | 14.04 | Yes |
Operating System | canonical | ubuntu_linux | 16.04 | Yes |
Operating System | canonical | ubuntu_linux | 17.04 | Yes |
Operating System | debian | debian_linux | 7.0 | Yes |
Operating System | debian | debian_linux | 7.1 | Yes |
Operating System | debian | debian_linux | 8.0 | Yes |
Operating System | debian | debian_linux | 9.0 | Yes |
Operating System | opensuse | leap | 42.2 | Yes |
Operating System | opensuse | leap | 42.3 | Yes |
Application | suse | linux_enterprise_debuginfo | 11 | Yes |
Application | suse | linux_enterprise_debuginfo | 11 | Yes |
Application | suse | linux_enterprise_point_of_sale | 11 | Yes |
Operating System | suse | linux_enterprise_server | 11 | Yes |
Operating System | suse | linux_enterprise_server | 11 | Yes |
Operating System | suse | linux_enterprise_server | 12 | Yes |
Operating System | nvidia | linux_for_tegra | < r21.6 | Yes |
Hardware | nvidia | jetson_tk1 | - | No |
Operating System | nvidia | linux_for_tegra | < r24.2.2 | Yes |
Hardware | nvidia | jetson_tx1 | - | No |
Application | nvidia | geforce_experience | < 3.10.0.55 | Yes |
Operating System | microsoft | windows | - | No |
Operating System | huawei | honor_v9_play_firmware | < jimmy-al00ac00b135 | Yes |
Hardware | huawei | honor_v9_play | - | No |
Operating System | arista | eos | ≤ 4.15 | Yes |
Operating System | arista | eos | < 4.16.13m | Yes |
Operating System | arista | eos | < 4.17.8m | Yes |
Operating System | arista | eos | ≤ 4.18.4.2f | Yes |
Operating System | siemens | ruggedcom_rm1224_firmware | < 5.0 | Yes |
Hardware | siemens | ruggedcom_rm1224 | - | No |
Operating System | siemens | scalance_m-800_firmware | < 5.0 | Yes |
Hardware | siemens | scalance_m-800 | - | No |
Operating System | siemens | scalance_s615_firmware | < 5.0 | Yes |
Hardware | siemens | scalance_s615 | - | No |
Operating System | siemens | scalance_w1750d_firmware | < 6.5.1.5 | Yes |
Hardware | siemens | scalance_w1750d | - | No |
Operating System | arubanetworks | arubaos | < 6.3.1.25 | Yes |
Operating System | arubanetworks | arubaos | < 6.4.4.16 | Yes |
Operating System | arubanetworks | arubaos | < 6.5.1.9 | Yes |
Operating System | arubanetworks | arubaos | < 6.5.3.3 | Yes |
Operating System | arubanetworks | arubaos | < 6.5.4.2 | Yes |
Operating System | arubanetworks | arubaos | < 8.1.0.4 | Yes |
Application | synology | router_manager | 1.1 | Yes |
Operating System | synology | diskstation_manager | 5.2 | Yes |
Operating System | synology | diskstation_manager | 6.0 | Yes |
Operating System | synology | diskstation_manager | 6.1 | Yes |