Off-by-one buffer overflow in Dnsmasq before 2.21 may allow attackers to execute arbitrary code via the DHCP lease file.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Dnsmasq | Dnsmasq | 2.14 (including) | 2.14 (including) |
| Dnsmasq | Dnsmasq | 2.15 (including) | 2.15 (including) |
| Dnsmasq | Dnsmasq | 2.16 (including) | 2.16 (including) |
| Dnsmasq | Dnsmasq | 2.17 (including) | 2.17 (including) |
| Dnsmasq | Dnsmasq | 2.18 (including) | 2.18 (including) |
| Dnsmasq | Dnsmasq | 2.19 (including) | 2.19 (including) |
| Dnsmasq | Dnsmasq | 2.20 (including) | 2.20 (including) |
References
- http://secunia.com/advisories/14691
- http://www.securityfocus.com/bid/12897
- http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19825
- http://secunia.com/advisories/14691
- http://www.securityfocus.com/bid/12897
- http://www.thekelleys.org.uk/dnsmasq/CHANGELOG
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19825