CVE-2015-3294

Related Files

Gentoo Linux Security Advisory 201512-01

Posted Dec 17, 2015

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201512-1 - A vulnerability in Dnsmasq can lead to a Denial of Service condition. Versions less than 2.72-r2 are affected.

tags | advisory, denial of service

systems | linux, gentoo

advisories | CVE-2015-3294

SHA-256 | 30a91cd4814a5a2c048a34695fee5c59ce22a6bd5ce21ccec15e04dba9849a93

Download | Favorite | View

Debian Security Advisory 3251-1

Posted May 5, 2015

Authored by Debian | Site debian.org

Debian Linux Security Advisory 3251-1 - Nick Sampanis discovered that dnsmasq, a small caching DNS proxy and DHCP/TFTP server, did not properly check the return value of the setup_reply() function called during a TCP connection, which is used then as a size argument in a function which writes data on the client's connection. A remote attacker could exploit this issue via a specially crafted DNS request to cause dnsmasq to crash, or potentially to obtain sensitive information from process memory.

tags | advisory, remote, tcp

systems | linux, debian

advisories | CVE-2015-3294

SHA-256 | 0bb79397a66f860de31309623fc8c5b986875d93982e2f105ed3bf1a7b74933b

Download | Favorite | View

Ubuntu Security Notice USN-2593-1

Posted May 4, 2015

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2593-1 - Nick Sampanis discovered that Dnsmasq incorrectly handled certain malformed DNS requests. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly obtain sensitive information.

tags | advisory, remote, denial of service

systems | linux, ubuntu

advisories | CVE-2015-3294

SHA-256 | 6766c564eb95b2463125fdc6031e6d51c7ee7ff15a0875026be2869fea735ae8

Download | Favorite | View