Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2017:2616-1

Опубликовано: 02 окт. 2017
Источник: suse-cvrf

Описание

Security update for dnsmasq

This update for dnsmasq fixes the following issues.

Remedy the following security issues:

  • CVE-2017-14491: 2 byte heap based overflow. [bsc#1060354]
  • CVE-2017-14492: heap based overflow. [bsc#1060355]
  • CVE-2017-14493: stack based overflow. [bsc#1060360]
  • CVE-2017-14494: DHCP - info leak. [bsc#1060361]
  • CVE-2017-14495: DNS - OOM DoS. [bsc#1060362]
  • CVE-2017-14496: DNS - DoS Integer underflow. [bsc#1060364]
  • Prevent a man-in-the-middle attack (bsc#972164, fate#321175).

Furthermore, the following issues have been fixed:

  • Fix DHCP relaying, broken in 2.76 and 2.77.
  • Update to version 2.78 (fate#321175, fate#322030, bsc#1035227).
  • Fix PXE booting for UEFI architectures (fate#322030).
  • Drop PrivateDevices=yes which breaks logging (bsc#902511, bsc#904537)
  • Build with support for DNSSEC (fate#318323, bsc#908137).

Please note that this update brings a (small) potential incompatibility in the handling of 'basename' in --pxe-service. Please read the CHANGELOG and the documentation if you are using this option.

Список пакетов

SUSE Linux Enterprise Server 12-LTSS
dnsmasq-2.78-6.6.1

Ссылки

Описание

The tcp_request function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setup_reply function, which allows remote attackers to read process memory and cause a denial of service (out-of-bounds read and crash) via a malformed DNS request.

Затронутые продукты
SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1
Ссылки

Описание

Dnsmasq before 2.76 allows remote servers to cause a denial of service (crash) via a reply with an empty DNS address that has an (1) A or (2) AAAA record defined locally.

Затронутые продукты
SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1
Ссылки

Описание

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.

Затронутые продукты
SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1
Ссылки

Описание

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted IPv6 router advertisement request.

Затронутые продукты
SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1
Ссылки

Описание

Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DHCPv6 request.

Затронутые продукты
SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1
Ссылки

Описание

dnsmasq before 2.78, when configured as a relay, allows remote attackers to obtain sensitive memory information via vectors involving handling DHCPv6 forwarded requests.

Затронутые продукты
SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1
Ссылки

Описание

Memory leak in dnsmasq before 2.78, when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service (memory consumption) via vectors involving DNS response creation.

Затронутые продукты
SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1
Ссылки

Описание

Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.

Затронутые продукты
SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1
Ссылки
Уязвимость SUSE-SU-2017:2616-1