CVE-2017-14494
- EPSS 15.41%
- Published 03.10.2017 01:29:02
- Last modified 20.04.2025 01:37:25
dnsmasq before 2.78, when configured as a relay, allows remote attackers to obtain sensitive memory information via vectors involving handling DHCPv6 forwarded requests.
CVE-2017-14496
- EPSS 15.74%
- Published 03.10.2017 01:29:02
- Last modified 20.04.2025 01:37:25
Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.
CVE-2017-13704
- EPSS 81.76%
- Published 03.10.2017 01:29:01
- Last modified 20.04.2025 01:37:25
In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xffffffff zero's (0xffffffffffffffff in 64 bit platf...
CVE-2015-5219
- EPSS 4.21%
- Published 21.07.2017 14:29:00
- Last modified 20.04.2025 01:37:25
The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service (infinite loop) via a crafted NTP packet.
CVE-2014-9853
- EPSS 0.47%
- Published 17.03.2017 14:59:00
- Last modified 20.04.2025 01:37:25
Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file.