Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Fedora 27: Critical Dnsmasq Update For Heap Overflows And Security Issues

fedora
Calendar Grey October 24, 2017
Dist Fedora Esm H88
Dnsmasq security notice for Fedora: tackles significant heap and buffer overflow vulnerabilities, reinforcing system reliability and protection.
CVE-2017-14491 CVE-2017-14492 CVE-2017-14493 CVE-2017-14494 CVE-2017-14495 CVE-2017-14496

Summary

Dnsmasq is lightweight, easy to configure DNS forwarder and DHCP server.

It is designed to provide DNS and, optionally, DHCP, to a small network.

It can serve the names of local machines which are not in the global

DNS. The DHCP server integrates with the DNS server and allows machines

with DHCP-allocated addresses to appear in the DNS with names configured

either in each host or in a central configuration file. Dnsmasq supports

static and dynamic DHCP leases and BOOTP for network booting of diskless

machines.

CVE-2017-14491 CVE-2017-14492 CVE-2017-14493 CVE-2017-14494 CVE-2017-14495

CVE-2017-14496

[ 1 ] Bug #1495409 - CVE-2017-14491 dnsmasq: heap overflow in the code responsible for building DNS replies

https://bugzilla.redhat.com/show_bug.cgi?id=1495409

[ 2 ] Bug #1495410 - CVE-2017-14492 dnsmasq: heap overflow in the IPv6 router advertisement code

https://bugzilla.redhat.com/show_bug.cgi?id=1495410

[ 3 ] Bug #1495411 - CVE-2017-14493 dnsmasq: stack buffer overflow in the DHCPv6 code

https://bugzilla.redhat.com/show_bug.cgi?id=1495411

[ 4 ] Bug #1495412 - CVE-2017-14494 dnsmasq: information leak in the DHCPv6 relay code

https://bugzilla.redhat.com/show_bug.cgi?id=1495412

[ 5 ] Bug #1495415 - CVE-2017-14495 dnsmasq: memory exhaustion vulnerability in the EDNS0 code

https://bugzilla.redhat.com/show_bug.cgi?id=1495415

[ 6 ] Bug #1495416 - CVE-2017-14496 dnsmasq: integer underflow leading to buffer over-read in the EDNS0 code

https://bugzilla.redhat.com/show_bug.cgi?id=1495416

su -c 'dnf upgrade dnsmasq' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Topics%20covered

Topics Covered

security advisory network security buffer overflow critical Fedora heap overflow dnsmasq

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 27
Version: 2.77
Release: 9.fc27
URL: https://thekelleys.org.uk/dnsmasq/
Summary: A lightweight DHCP/caching DNS server

Topics%20covered

Topics Covered

security advisory network security buffer overflow critical Fedora heap overflow dnsmasq

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here