Описание
A single-byte, non-arbitrary write/use-after-free flaw was found in dnsmasq. This flaw allows an attacker who sends a crafted packet processed by dnsmasq, potentially causing a denial of service.
Ссылки
- Third Party Advisory
- Issue TrackingPatchThird Party Advisory
- Mailing ListVendor Advisory
- Broken Link
- Third Party Advisory
- Issue TrackingPatchThird Party Advisory
- Mailing ListVendor Advisory
- Broken Link
Уязвимые конфигурации
Конфигурация 1Версия до 2.87 (исключая)
cpe:2.3:a:thekelleys:dnsmasq:*:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
EPSS
Процентиль: 4%
0.0002
Низкий
7.5 High
CVSS3
Дефекты
CWE-416
CWE-416
Связанные уязвимости
CVSS3: 7.5
ubuntu
почти 3 года назад
A single-byte, non-arbitrary write/use-after-free flaw was found in dnsmasq. This flaw allows an attacker who sends a crafted packet processed by dnsmasq, potentially causing a denial of service.
CVSS3: 7.5
redhat
около 3 лет назад
A single-byte, non-arbitrary write/use-after-free flaw was found in dnsmasq. This flaw allows an attacker who sends a crafted packet processed by dnsmasq, potentially causing a denial of service.
CVSS3: 7.5
debian
почти 3 года назад
A single-byte, non-arbitrary write/use-after-free flaw was found in dn ...
EPSS
Процентиль: 4%
0.0002
Низкий
7.5 High
CVSS3
Дефекты
CWE-416
CWE-416