Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2020-37127

Опубликовано: 05 фев. 2026
Источник: redhat
CVSS3: 5.5

Описание

Dnsmasq-utils 2.79-1 contains a buffer overflow vulnerability in the dhcp_release utility that allows attackers to cause a denial of service by supplying excessive input. Attackers can trigger a core dump and terminate the dhcp_release process by sending a crafted input string longer than 16 characters.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 10dnsmasqFix deferred
Red Hat Enterprise Linux 6dnsmasqFix deferred
Red Hat Enterprise Linux 7dnsmasqFix deferred
Red Hat Enterprise Linux 8dnsmasqFix deferred
Red Hat Enterprise Linux 9dnsmasqFix deferred
Red Hat OpenShift Container Platform 4openshift4/ose-baremetal-runtimecfg-rhel8Fix deferred
Red Hat OpenShift Container Platform 4openshift4/ose-baremetal-runtimecfg-rhel9Fix deferred
Red Hat OpenShift Container Platform 4rhcosFix deferred
Red Hat OpenStack Platform 18.0rhoso-operators/infra-rhel9-operatorFix deferred

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-120
https://bugzilla.redhat.com/show_bug.cgi?id=2437103dnsmasq: dnsmasq-utils 'dhcp_release' Denial of Service

5.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2020-37127

CVSS3: 5.5
ubuntu
5 месяцев назад

Dnsmasq-utils 2.79-1 contains a buffer overflow vulnerability in the dhcp_release utility that allows attackers to cause a denial of service by supplying excessive input. Attackers can trigger a core dump and terminate the dhcp_release process by sending a crafted input string longer than 16 characters.

nvd логотип

CVE-2020-37127

CVSS3: 5.5
nvd
5 месяцев назад

Dnsmasq-utils 2.79-1 contains a buffer overflow vulnerability in the dhcp_release utility that allows attackers to cause a denial of service by supplying excessive input. Attackers can trigger a core dump and terminate the dhcp_release process by sending a crafted input string longer than 16 characters.

debian логотип

CVE-2020-37127

CVSS3: 5.5
debian
5 месяцев назад

Dnsmasq-utils 2.79-1 contains a buffer overflow vulnerability in the d ...

github логотип

GHSA-j2ph-f4fj-m4r3

CVSS3: 9.8
github
5 месяцев назад

Dnsmasq-utils 2.79-1 contains a buffer overflow vulnerability in the dhcp_release utility that allows attackers to cause a denial of service by supplying excessive input. Attackers can trigger a core dump and terminate the dhcp_release process by sending a crafted input string longer than 16 characters.

5.5 Medium

CVSS3