Commit - rpms/dnsmasq - b75bf67ab76b97e7676cf2b28b172e8aff49eb3f

rpms / dnsmasq

Overview Files Commits Branches Forks Releases

Monitoring status:

Bugzilla Assignee:

Fedora:: pemensik
EPEL:: pemensik

`b75bf67` Security fix, CVE-2017-14496, Integer underflow in DNS response creation.

Authored and Committed by pemensik 6 years ago

raw patch tree parent

2 files changed. 69 lines added. 0 lines removed.

dnsmasq-2.77-CVE-2017-14496.patch

    Security fix, CVE-2017-14496, Integer underflow in  DNS response creation.
    
        Fix DoS in DNS. Invalid boundary checks in the
        add_pseudoheader function allows a memcpy call with negative
        size An attacker which can send malicious DNS queries
        to dnsmasq can trigger a DoS remotely.
        dnsmasq is vulnerable only if one of the following option is
        specified: --add-mac, --add-cpe-id or --add-subnet.
    
    Signed-off-by: Petr Menšík <pemensik@redhat.com>

dnsmasq-2.77-CVE-2017-14496.patch

file added

+66

dnsmasq.spec

file modified

+3 -0

rpms / dnsmasq

Source Code

b75bf67 Security fix, CVE-2017-14496, Integer underflow in DNS response creation.

Authored and Committed by pemensik 6 years ago

`b75bf67` Security fix, CVE-2017-14496, Integer underflow in DNS response creation.