CVE-2017-14491

Опубликовано: 04 окт. 2017

Источник: ubuntu

Приоритет: high

EPSS Средний

CVSS2: 7.5

CVSS3: 9.8

Описание

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.

Релиз	Статус	Примечание
devel	not-affected	2.78-1
esm-infra-legacy/trusty	released	2.68-1ubuntu0.2
esm-infra/xenial	released	2.75-1ubuntu0.16.04.3
precise/esm	not-affected	2.59-4ubuntu0.3
trusty	released	2.68-1ubuntu0.2
trusty/esm	released	2.68-1ubuntu0.2
upstream	needs-triage
vivid/ubuntu-core	DNE
xenial	released	2.75-1ubuntu0.16.04.3
zesty	released	2.76-5ubuntu0.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 98%

0.60192

Средний

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2017-14491

CVSS3: 9.8

redhat

около 8 лет назад

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.

CVE-2017-14491

CVSS3: 9.8

nvd

около 8 лет назад

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.

CVE-2017-14491

CVSS3: 9.8

debian

около 8 лет назад

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attack ...

GHSA-m4px-ph3f-7964

CVSS3: 9.8

github

больше 3 лет назад

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.

ELSA-2017-2840

oracle-oval

около 8 лет назад

ELSA-2017-2840: dnsmasq security update (CRITICAL)

EPSS

Процентиль: 98%

0.60192

Средний

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2017-14491

Описание

Пакет dnsmasq

Ссылки на источники

Связанные уязвимости