ID de Prueba:	1.3.6.1.4.1.25623.1.0.147385
Categoría:	Buffer overflow
Título:	Dnsmasq <= 2.86 Multiple Vulnerabilities
Resumen:	Dnsmasq is prone to multiple vulnerabilities.
Descripción:	Summary: Dnsmasq is prone to multiple vulnerabilities. Vulnerability Insight: The following flaws exist: - CVE-2021-45951: Heap-based buffer overflow in check_bad_address - CVE-2021-45952: Heap-based buffer overflow in dhcp_reply - CVE-2021-45953: Heap-based buffer overflow in extract_name - CVE-2021-45954: Heap-based buffer overflow in extract_name - CVE-2021-45955: Heap-based buffer overflow in resize_packet - CVE-2021-45956: Heap-based buffer overflow in print_mac - CVE-2021-45957: Heap-based buffer overflow in answer_request Note: The CVEs above have been changed to status 'DISPUTED' - CVE-2022-0934: Heap use after free in dhcp6_no_relay Affected Software/OS: Dnsmasq version 2.86 and prior. Solution: Update to version 2.87 or later. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2021-45951 https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2022q1/016162.html https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2022q1/016164.html https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35868 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/dnsmasq/OSV-2021-924.yaml Common Vulnerability Exposure (CVE) ID: CVE-2021-45952 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35870 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/dnsmasq/OSV-2021-927.yaml Common Vulnerability Exposure (CVE) ID: CVE-2021-45953 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35858 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/dnsmasq/OSV-2021-929.yaml Common Vulnerability Exposure (CVE) ID: CVE-2021-45954 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35861 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/dnsmasq/OSV-2021-931.yaml Common Vulnerability Exposure (CVE) ID: CVE-2021-45955 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35898 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/dnsmasq/OSV-2021-932.yaml Common Vulnerability Exposure (CVE) ID: CVE-2021-45956 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35887 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/dnsmasq/OSV-2021-933.yaml Common Vulnerability Exposure (CVE) ID: CVE-2021-45957 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35920 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/dnsmasq/OSV-2021-935.yaml Common Vulnerability Exposure (CVE) ID: CVE-2022-0934 https://access.redhat.com/security/cve/CVE-2022-0934 https://bugzilla.redhat.com/show_bug.cgi?id=2057075 https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2022q1/016272.html https://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=03345ecefeb0d82e3c3a4c28f27c3554f0611b39
Copyright	Copyright (C) 2022 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.