| Max CVSS | 7.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-14513 | 5.0 |
Improper bounds checking in Dnsmasq before 2.76 allows an attacker controlled DNS server to send large DNS packets that result in a read operation beyond the buffer allocated for the packet, a different vulnerability than CVE-2017-14491.
|
03-03-2023 - 14:24 | 01-08-2019 - 21:15 | |
| CVE-2020-25685 | 4.3 |
A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query, dnsmasq checks in forward.c:reply_query(), which is the forwarded query that matches the reply, by only using a weak hash of the query name. Due to the weak
|
08-12-2022 - 03:08 | 20-01-2021 - 16:15 | |
| CVE-2017-14491 | 7.5 |
Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.
|
22-04-2022 - 20:39 | 04-10-2017 - 01:29 | |
| CVE-2020-25686 | 4.3 |
A flaw was found in dnsmasq before version 2.83. When receiving a query, dnsmasq does not check for an existing pending request for the same name and forwards a new request. By default, a maximum of 150 pending queries can be sent to upstream servers
|
14-02-2022 - 15:29 | 20-01-2021 - 17:15 | |
| CVE-2020-25684 | 4.3 |
A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query, dnsmasq checks in the forward.c:reply_query() if the reply destination address/port is used by the pending forwarded queries. However, it does not use the a
|
14-02-2022 - 14:56 | 20-01-2021 - 16:15 | |
| CVE-2017-14495 | 5.0 |
Memory leak in dnsmasq before 2.78, when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service (memory consumption) via vectors involving DNS response creation.
|
03-10-2019 - 00:03 | 03-10-2017 - 01:29 | |
| CVE-2017-14496 | 7.8 |
Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.
|
11-05-2018 - 01:29 | 03-10-2017 - 01:29 | |
| CVE-2017-14494 | 4.3 |
dnsmasq before 2.78, when configured as a relay, allows remote attackers to obtain sensitive memory information via vectors involving handling DHCPv6 forwarded requests.
|
04-03-2018 - 02:29 | 03-10-2017 - 01:29 | |
| CVE-2017-14492 | 7.5 |
Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted IPv6 router advertisement request.
|
04-03-2018 - 02:29 | 03-10-2017 - 01:29 | |
| CVE-2017-14493 | 7.5 |
Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DHCPv6 request.
|
04-03-2018 - 02:29 | 03-10-2017 - 01:29 |