Thekelleys

Dnsmasq

39 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 65.41%
  • Veröffentlicht 03.10.2017 01:29:01
  • Zuletzt bearbeitet 13.05.2026 00:24:29

In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xffffffff zero's (0xffffffffffffffff in 64 bit platf...

  • EPSS 2.42%
  • Veröffentlicht 30.06.2016 17:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Dnsmasq before 2.76 allows remote servers to cause a denial of service (crash) via a reply with an empty DNS address that has an (1) A or (2) AAAA record defined locally.

Exploit
  • EPSS 4.46%
  • Veröffentlicht 08.05.2015 14:59:05
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The tcp_request function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setup_reply function, which allows remote attackers to read process memory and cause a denial of service (out-of-bounds read and crash) via a malforme...

Exploit
  • EPSS 2.8%
  • Veröffentlicht 05.03.2013 21:38:54
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Dnsmasq before 2.66test2, when used with certain libvirt configurations, replies to queries from prohibited interfaces, which allows remote attackers to cause a denial of service (traffic amplification) via spoofed TCP based DNS queries. NOTE: this ...

  • EPSS 5.03%
  • Veröffentlicht 05.03.2013 21:38:54
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Dnsmasq before 2.63test1, when used with certain libvirt configurations, replies to requests from prohibited interfaces, which allows remote attackers to cause a denial of service (traffic amplification) via a spoofed DNS query.

  • EPSS 10.38%
  • Veröffentlicht 02.09.2009 15:30:01
  • Zuletzt bearbeitet 16.06.2026 23:10:36

The tftp_request function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a TFTP read (aka RRQ) request with a malformed blksize option...

  • EPSS 12.68%
  • Veröffentlicht 02.09.2009 15:30:01
  • Zuletzt bearbeitet 16.06.2026 23:10:36

Heap-based buffer overflow in the tftp_request function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, might allow remote attackers to execute arbitrary code via a long filename in a TFTP packet, as demonstrated by a read (aka RRQ) req...

Exploit
  • EPSS 2.53%
  • Veröffentlicht 18.07.2008 16:41:00
  • Zuletzt bearbeitet 16.06.2026 22:55:22

dnsmasq 2.25 allows remote attackers to cause a denial of service (daemon crash) by (1) renewing a nonexistent lease or (2) sending a DHCPREQUEST for an IP address that is not in the same network, related to the DHCP NAK response from the daemon.

  • EPSS 1.87%
  • Veröffentlicht 02.05.2005 04:00:00
  • Zuletzt bearbeitet 16.06.2026 22:11:58

Dnsmasq before 2.21 allows remote attackers to poison the DNS cache via answers to queries that were not made by Dnsmasq.