Описание
Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.78-1 |
| esm-infra-legacy/trusty | released | 2.68-1ubuntu0.2 |
| esm-infra/xenial | released | 2.75-1ubuntu0.16.04.3 |
| precise/esm | not-affected | 2.59-4ubuntu0.3 |
| trusty | released | 2.68-1ubuntu0.2 |
| trusty/esm | released | 2.68-1ubuntu0.2 |
| upstream | needs-triage | |
| vivid/ubuntu-core | DNE | |
| xenial | released | 2.75-1ubuntu0.16.04.3 |
| zesty | released | 2.76-5ubuntu0.1 |
Показывать по
EPSS
7.8 High
CVSS2
7.5 High
CVSS3
Связанные уязвимости
Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.
Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.
Integer underflow in the add_pseudoheader function in dnsmasq before 2 ...
Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.
Уязвимость функции add_pseudoheader DNS-сервера Dnsmasq, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
7.8 High
CVSS2
7.5 High
CVSS3