Ubuntu Local Security Checks : Ubuntu Update for dnsmasq USN-3430-1

Anfälligkeitssuche		Suche in 219043 CVE Beschreibungen und 99761 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.843319

Kategorie: Ubuntu Local Security Checks

Titel: Ubuntu Update for dnsmasq USN-3430-1

Zusammenfassung: The remote host is missing an update for the 'dnsmasq'; package(s) announced via the referenced advisory.

Beschreibung: Summary:
The remote host is missing an update for the 'dnsmasq'
package(s) announced via the referenced advisory.

Vulnerability Insight:
Felix Wilhelm, Fermin J. Serna, Gabriel
Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled DNS
requests. A remote attacker could use this issue to cause Dnsmasq to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2017-14491) Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin
Hamacher discovered that Dnsmasq incorrectly handled IPv6 router advertisements.
A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a
denial of service, or possibly execute arbitrary code. (CVE-2017-14492) Felix
Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that
Dnsmasq incorrectly handled DHCPv6 requests. A remote attacker could use this
issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly
execute arbitrary code. (CVE-2017-14493) Felix Wilhelm, Fermin J. Serna, Gabriel
Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled DHCPv6
packets. A remote attacker could use this issue to possibly obtain sensitive
memory contents. (CVE-2017-14494) Felix Wilhelm, Fermin J. Serna, Gabriel
Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled DNS
requests. A remote attacker could use this issue to cause Dnsmasq to consume
memory, resulting in a denial of service. (CVE-2017-14495) Felix Wilhelm, Fermin
J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly
handled DNS requests. A remote attacker could use this issue to cause Dnsmasq to
crash, resulting in a denial of service. (CVE-2017-14496)

Affected Software/OS:
dnsmasq on Ubuntu 17.04,
Ubuntu 16.04 LTS,
Ubuntu 14.04 LTS

Solution:
Please Install the Updated Packages.

CVSS Score:
7.8

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2017-14491
Common Vulnerability Exposure (CVE) ID: CVE-2017-14492
Common Vulnerability Exposure (CVE) ID: CVE-2017-14493
Common Vulnerability Exposure (CVE) ID: CVE-2017-14494
Common Vulnerability Exposure (CVE) ID: CVE-2017-14495
Common Vulnerability Exposure (CVE) ID: CVE-2017-14496

Copyright Copyright (C) 2017 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.843319
Kategorie:	Ubuntu Local Security Checks
Titel:	Ubuntu Update for dnsmasq USN-3430-1
Zusammenfassung:	The remote host is missing an update for the 'dnsmasq'; package(s) announced via the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'dnsmasq' package(s) announced via the referenced advisory. Vulnerability Insight: Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled DNS requests. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2017-14491) Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled IPv6 router advertisements. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2017-14492) Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled DHCPv6 requests. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2017-14493) Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled DHCPv6 packets. A remote attacker could use this issue to possibly obtain sensitive memory contents. (CVE-2017-14494) Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled DNS requests. A remote attacker could use this issue to cause Dnsmasq to consume memory, resulting in a denial of service. (CVE-2017-14495) Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled DNS requests. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service. (CVE-2017-14496) Affected Software/OS: dnsmasq on Ubuntu 17.04, Ubuntu 16.04 LTS, Ubuntu 14.04 LTS Solution: Please Install the Updated Packages. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-14491 Common Vulnerability Exposure (CVE) ID: CVE-2017-14492 Common Vulnerability Exposure (CVE) ID: CVE-2017-14493 Common Vulnerability Exposure (CVE) ID: CVE-2017-14494 Common Vulnerability Exposure (CVE) ID: CVE-2017-14495 Common Vulnerability Exposure (CVE) ID: CVE-2017-14496
Copyright	Copyright (C) 2017 Greenbone Networks GmbH