7.8 - USN-3430-1

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Summary
Title	Dnsmasq vulnerabilities

Informations
Name	USN-3430-1	First vendor Publication	2017-10-02
Vendor	Ubuntu	Last vendor Modification	2017-10-02
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score	7.8	Attack Range	Network
Cvss Impact Score	6.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 17.04 - Ubuntu 16.04 LTS - Ubuntu 14.04 LTS

Summary:

Several security issues were fixed in Dnsmasq.

Software Description: - dnsmasq: Small caching DNS proxy and DHCP/TFTP server

Details:

Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled DNS requests. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2017-14491)

Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled IPv6 router advertisements. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2017-14492)

Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled DHCPv6 requests. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2017-14493)

Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled DHCPv6 packets. A remote attacker could use this issue to possibly obtain sensitive memory contents. (CVE-2017-14494)

Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher discovered that Dnsmasq incorrectly handled DNS requests. A remote attacker could use this issue to cause Dnsmasq to consume memory, resulting in a denial of service. (CVE-2017-14495)

Update instructions:

The problem can be corrected by updating your system to the following package versions:

Ubuntu 17.04:
dnsmasq 2.76-5ubuntu0.1
dnsmasq-base 2.76-5ubuntu0.1
dnsmasq-utils 2.76-5ubuntu0.1

Ubuntu 16.04 LTS:
dnsmasq 2.75-1ubuntu0.16.04.3
dnsmasq-base 2.75-1ubuntu0.16.04.3
dnsmasq-utils 2.75-1ubuntu0.16.04.3

Ubuntu 14.04 LTS:
dnsmasq 2.68-1ubuntu0.2
dnsmasq-base 2.68-1ubuntu0.2
dnsmasq-utils 2.68-1ubuntu0.2

After a standard system update you need to reboot your computer to make all the necessary changes.

References:
https://www.ubuntu.com/usn/usn-3430-1
CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494,
CVE-2017-14495, CVE-2017-14496

Package Information:
https://launchpad.net/ubuntu/+source/dnsmasq/2.76-5ubuntu0.1
https://launchpad.net/ubuntu/+source/dnsmasq/2.75-1ubuntu0.16.04.3
https://launchpad.net/ubuntu/+source/dnsmasq/2.68-1ubuntu0.2

Original Source

Url : http://www.ubuntu.com/usn/USN-3430-1

CWE : Common Weakness Enumeration

%	Id	Name
33 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer
17 %	CWE-787	Out-of-bounds Write (CWE/SANS Top 25)
17 %	CWE-772	Missing Release of Resource after Effective Lifetime
17 %	CWE-200	Information Exposure
17 %	CWE-191	Integer Underflow (Wrap or Wraparound)

CPE : Common Platform Enumeration

Type	Description	Count
Application	Arista Eos cpe:2.3:a:arista:eos::::::::	1
Application	Suse Linux Enterprise Debuginfo cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp4:::::: cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp3::::::	2
Application	Suse Linux Enterprise Point Of Sale cpe:2.3:a:suse:linux_enterprise_point_of_sale:11:sp3::::::	1
Application	Synology Diskstation Manager cpe:2.3:a:synology:diskstation_manager:6.1:::::::* cpe:2.3:a:synology:diskstation_manager:6.0:::::::* cpe:2.3:a:synology:diskstation_manager:5.2:::::::*	3
Application	Synology Router Manager cpe:2.3:a:synology:router_manager:1.1:::::::*	1
Application	Thekelleys Dnsmasq cpe:2.3:a:thekelleys:dnsmasq:2.9:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.8:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.7:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.6:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.5:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.48:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.47:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.46:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.45:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.44:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.43:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.42:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.41:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.40:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.4:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.39:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.38:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.37:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.36:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.35:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.34:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.33:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.31:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.30:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.3:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.29:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.28:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.27:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.26:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.25:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.24:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.23:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.22:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.21:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.20:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.2:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.19:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.18:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.17:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.16:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.15:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.14:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.13:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.12:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.11:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.10:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.1:::::::* cpe:2.3:a:thekelleys:dnsmasq:2.0:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.9:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.8:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.7:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.6:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.5:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.4:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.3:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.2:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.18:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.17:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.16:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.15:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.14:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.13:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.12:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.11:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.10:::::::* cpe:2.3:a:thekelleys:dnsmasq:1.0:::::::* cpe:2.3:a:thekelleys:dnsmasq:0.996:::::::* cpe:2.3:a:thekelleys:dnsmasq:0.992:::::::* cpe:2.3:a:thekelleys:dnsmasq:0.98:::::::* cpe:2.3:a:thekelleys:dnsmasq:0.96:::::::* cpe:2.3:a:thekelleys:dnsmasq:0.95:::::::* cpe:2.3:a:thekelleys:dnsmasq:0.7:::::::* cpe:2.3:a:thekelleys:dnsmasq:0.6:::::::* cpe:2.3:a:thekelleys:dnsmasq:0.5:::::::* cpe:2.3:a:thekelleys:dnsmasq:0.4:::::::* cpe:2.3:a:thekelleys:dnsmasq:::::::: cpe:2.3:a:thekelleys:dnsmasq:-:::::::*	77
Os	Arista Eos cpe:2.3:o:arista:eos:4.18:::::::* cpe:2.3:o:arista:eos:4.17:::::::* cpe:2.3:o:arista:eos:4.16:::::::* cpe:2.3:o:arista:eos:4.15.2f:::::::* cpe:2.3:o:arista:eos:4.15.1fxb:::::::* cpe:2.3:o:arista:eos:4.15.1fx-7060x:::::::* cpe:2.3:o:arista:eos:4.15.1fx-7060qx:::::::* cpe:2.3:o:arista:eos:4.15.1f:::::::* cpe:2.3:o:arista:eos:4.15.0fxa:::::::* cpe:2.3:o:arista:eos:4.15.0fx1:::::::* cpe:2.3:o:arista:eos:4.15.0fx:::::::* cpe:2.3:o:arista:eos:4.15.0f:::::::* cpe:2.3:o:arista:eos:4.15:::::::* cpe:2.3:o:arista:eos:4.14.9:::::::* cpe:2.3:o:arista:eos:4.14.8f:::::::* cpe:2.3:o:arista:eos:4.14.8.1f:::::::* cpe:2.3:o:arista:eos:4.14.7f:::::::* cpe:2.3:o:arista:eos:4.14.7.1f:::::::* cpe:2.3:o:arista:eos:4.14.6f:::::::* cpe:2.3:o:arista:eos:4.14.5fx.4:::::::* cpe:2.3:o:arista:eos:4.14.5fx.3:::::::* cpe:2.3:o:arista:eos:4.14.5fx.2:::::::* cpe:2.3:o:arista:eos:4.14.5fx.1:::::::* cpe:2.3:o:arista:eos:4.14.5fx:::::::* cpe:2.3:o:arista:eos:4.14.5f:::::::* cpe:2.3:o:arista:eos:4.14.5.1f-ssu:::::::* cpe:2.3:o:arista:eos:4.14.4f:::::::* cpe:2.3:o:arista:eos:4.14.4.2f:::::::* cpe:2.3:o:arista:eos:4.14.4.1f:::::::* cpe:2.3:o:arista:eos:4.14.3f:::::::* cpe:2.3:o:arista:eos:4.14.3.1f:::::::* cpe:2.3:o:arista:eos:4.14.2f:::::::* cpe:2.3:o:arista:eos:4.14.1f:::::::* cpe:2.3:o:arista:eos:4.14.0f:::::::* cpe:2.3:o:arista:eos:4.14:::::::* cpe:2.3:o:arista:eos:4.13.9m:::::::* cpe:2.3:o:arista:eos:4.13.9.1m:::::::* cpe:2.3:o:arista:eos:4.13.8m:::::::* cpe:2.3:o:arista:eos:4.13.7m:::::::* cpe:2.3:o:arista:eos:4.13.7.3m:::::::* cpe:2.3:o:arista:eos:4.13.7.2m:::::::* cpe:2.3:o:arista:eos:4.13.6:::::::* cpe:2.3:o:arista:eos:4.13.5.1f:::::::* cpe:2.3:o:arista:eos:4.13.5:::::::* cpe:2.3:o:arista:eos:4.13.4.1f:::::::* cpe:2.3:o:arista:eos:4.13.3.1f:::::::* cpe:2.3:o:arista:eos:4.13.2.1f:::::::* cpe:2.3:o:arista:eos:4.13.13m:::::::* cpe:2.3:o:arista:eos:4.13.12m:::::::* cpe:2.3:o:arista:eos:4.13.11m:::::::* cpe:2.3:o:arista:eos:4.13.10m:::::::* cpe:2.3:o:arista:eos:4.13.1.1f:::::::* cpe:2.3:o:arista:eos:4.13:::::::* cpe:2.3:o:arista:eos:4.12.9:::::::* cpe:2.3:o:arista:eos:4.12.8.1:::::::* cpe:2.3:o:arista:eos:4.12.8:::::::* cpe:2.3:o:arista:eos:4.12.7.1:::::::* cpe:2.3:o:arista:eos:4.12.6.1:::::::* cpe:2.3:o:arista:eos:4.12.5.2:::::::* cpe:2.3:o:arista:eos:4.12.10:::::::* cpe:2.3:o:arista:eos:4.12:::::::* cpe:2.3:o:arista:eos:4.11.11:::::::* cpe:2.3:o:arista:eos:::::::: cpe:2.3:o:arista:eos:-:::::::*	64
Os	Arubanetworks Arubaos cpe:2.3:o:arubanetworks:arubaos:8.0.1.1:::::::* cpe:2.3:o:arubanetworks:arubaos:8.0.1.0:::::::* cpe:2.3:o:arubanetworks:arubaos:8.0.0.0:::::::* cpe:2.3:o:arubanetworks:arubaos:6.5.4.9:::::::* cpe:2.3:o:arubanetworks:arubaos:6.5.4.8:::::::* cpe:2.3:o:arubanetworks:arubaos:6.5.4.7:::::::* cpe:2.3:o:arubanetworks:arubaos:6.5.4.6:::::::* cpe:2.3:o:arubanetworks:arubaos:6.5.4.5:::::::* cpe:2.3:o:arubanetworks:arubaos:6.5.4.4:::::::* cpe:2.3:o:arubanetworks:arubaos:6.5.4.3:::::::* cpe:2.3:o:arubanetworks:arubaos:6.5.4.2:::::::* cpe:2.3:o:arubanetworks:arubaos:6.5.4.13:::::::* cpe:2.3:o:arubanetworks:arubaos:6.5.4.12:::::::* cpe:2.3:o:arubanetworks:arubaos:6.5.4.10:::::::* cpe:2.3:o:arubanetworks:arubaos:6.5.4.1:::::::* cpe:2.3:o:arubanetworks:arubaos:6.5.4.0:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.9:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.8:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.6:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.5:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.4:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.3:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.2:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.19:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.18:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.17:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.16:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.15:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.14:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.13:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.12:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.11:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.10:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.1:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.4.0:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.2.5:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.2.4:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.2.3:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.2.1:::::::* cpe:2.3:o:arubanetworks:arubaos:6.4.2.1:fips:::::: cpe:2.3:o:arubanetworks:arubaos:6.3.11:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.11:fips:::::: cpe:2.3:o:arubanetworks:arubaos:6.3.1.9:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.1.8:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.1.7:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.1.6:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.1.5:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.1.4:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.1.3:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.1.2:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.1.14:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.1.13:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.1.12:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.1.11:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.1.10:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.1.1:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.1:::::::* cpe:2.3:o:arubanetworks:arubaos:6.3.0.0:::::::* cpe:2.3:o:arubanetworks:arubaos:6.2.3.9:::::::* cpe:2.3:o:arubanetworks:arubaos:6.2.3.8:::::::* cpe:2.3:o:arubanetworks:arubaos:6.2.3.7:::::::* cpe:2.3:o:arubanetworks:arubaos:6.2.3.6:::::::* cpe:2.3:o:arubanetworks:arubaos:6.2.3.5:::::::* cpe:2.3:o:arubanetworks:arubaos:6.2.3.4:::::::* cpe:2.3:o:arubanetworks:arubaos:6.2.3.3:::::::* cpe:2.3:o:arubanetworks:arubaos:6.2.3.2:::::::* cpe:2.3:o:arubanetworks:arubaos:6.2.3.1:::::::* cpe:2.3:o:arubanetworks:arubaos:6.2.0.2:::::::* cpe:2.3:o:arubanetworks:arubaos:6.2.0.1:::::::* cpe:2.3:o:arubanetworks:arubaos:6.2.0.0:::::::* cpe:2.3:o:arubanetworks:arubaos:6.1.4.2:-:fips:::::* cpe:2.3:o:arubanetworks:arubaos:6.1.3.9:::::::* cpe:2.3:o:arubanetworks:arubaos:6.1.3.8:::::::* cpe:2.3:o:arubanetworks:arubaos:6.1.3.7:::::::* cpe:2.3:o:arubanetworks:arubaos:6.1.3.6:::::::* cpe:2.3:o:arubanetworks:arubaos:6.1.3.5:::::::* cpe:2.3:o:arubanetworks:arubaos:6.1.3.4:::::::* cpe:2.3:o:arubanetworks:arubaos:6.1.3.3:::::::* cpe:2.3:o:arubanetworks:arubaos:6.1.3.2:::::::* cpe:2.3:o:arubanetworks:arubaos:6.1.3.1:::::::* cpe:2.3:o:arubanetworks:arubaos:6.1.3.0:::::::* cpe:2.3:o:arubanetworks:arubaos:6.1.2.3:-:fips:::::* cpe:2.3:o:arubanetworks:arubaos:3.4.0:::::::* cpe:2.3:o:arubanetworks:arubaos:3.3.2.6:::::::* cpe:2.3:o:arubanetworks:arubaos:3.3.2.14:fips:::::: cpe:2.3:o:arubanetworks:arubaos:3.3.1.30:::::::* cpe:2.3:o:arubanetworks:arubaos:3.3.1.29:::::::* cpe:2.3:o:arubanetworks:arubaos:3.3.1.16:::::::* cpe:2.3:o:arubanetworks:arubaos:3.3:::::::* cpe:2.3:o:arubanetworks:arubaos:3.2:::::::* cpe:2.3:o:arubanetworks:arubaos:3.1.1:rn:::::: cpe:2.3:o:arubanetworks:arubaos:3.1:::::::* cpe:2.3:o:arubanetworks:arubaos::::::::	93
Os	Canonical Ubuntu Linux cpe:2.3:o:canonical:ubuntu_linux:17.04:::::::* cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts::: cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts::: cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts::: cpe:2.3:o:canonical:ubuntu_linux:12.04::::-:::	5
Os	Debian Debian Linux cpe:2.3:o:debian:debian_linux:9.0:::::::* cpe:2.3:o:debian:debian_linux:8.0:::::::* cpe:2.3:o:debian:debian_linux:7.1:::::::* cpe:2.3:o:debian:debian_linux:7.0:::::::*	4
Os	Google Android cpe:2.3:o:google:android:8.0:::::::* cpe:2.3:o:google:android:7.1.2:::::::* cpe:2.3:o:google:android:7.1.1:::::::* cpe:2.3:o:google:android:7.0:::::::* cpe:2.3:o:google:android:6.0.1:::::::* cpe:2.3:o:google:android:6.0:::::::* cpe:2.3:o:google:android:5.1.1:::::::* cpe:2.3:o:google:android:5.0.2:::::::* cpe:2.3:o:google:android:4.4.4:::::::*	9
Os	Novell Leap cpe:2.3:o:novell:leap:42.3:::::::* cpe:2.3:o:novell:leap:42.2:::::::*	2
Os	Opensuse Leap cpe:2.3:o:opensuse:leap:42.3:::::::* cpe:2.3:o:opensuse:leap:42.2:::::::*	2
Os	Redhat Enterprise Linux Desktop cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::* cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*	2
Os	Redhat Enterprise Linux Server cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::* cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*	2
Os	Redhat Enterprise Linux Workstation cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::* cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*	2
Os	Suse Linux Enterprise Server cpe:2.3:o:suse:linux_enterprise_server:12::::ltss::: cpe:2.3:o:suse:linux_enterprise_server:11:sp4:::::: cpe:2.3:o:suse:linux_enterprise_server:11:sp3:::ltss:::*	3

Snort® IPS/IDS

Date	Description
2018-10-25	dnsmasq add_pseudoheader memory leak attempt RuleID : 47881 - Revision : 2 - Type : PROTOCOL-DNS
2017-11-07	dnsmasq add_pseudoheader integer underflow attempt RuleID : 44482 - Revision : 2 - Type : PROTOCOL-DNS
2017-11-07	dnsmasq IPv6 heap overflow attempt RuleID : 44481 - Revision : 2 - Type : SERVER-OTHER
2017-11-07	dnsmasq Relay-forw information leak attempt RuleID : 44480 - Revision : 2 - Type : SERVER-OTHER
2017-11-07	dnsmasq add_pseudoheader memory leak attempt RuleID : 44478 - Revision : 3 - Type : PROTOCOL-DNS
2017-11-07	dnsmasq dhcp6_maybe_relay stack buffer overflow attempt RuleID : 44477 - Revision : 2 - Type : SERVER-OTHER
2014-01-10	Oracle Secure Backup observice.exe dns response overflow attempt RuleID : 20242 - Revision : 10 - Type : PROTOCOL-DNS

Nessus® Vulnerability Scanner

Date	Description
2018-11-27	Name : The remote Virtuozzo host is missing a security update. File : Virtuozzo_VZLSA-2017-2838.nasl - Type : ACT_GATHER_INFO
2018-09-27	Name : The remote EulerOS host is missing multiple security updates. File : EulerOS_SA-2018-1285.nasl - Type : ACT_GATHER_INFO
2018-08-17	Name : The remote PhotonOS host is missing multiple security updates. File : PhotonOS_PHSA-2017-0035.nasl - Type : ACT_GATHER_INFO
2018-01-15	Name : The remote Fedora host is missing a security update. File : fedora_2017-7106a157f5.nasl - Type : ACT_GATHER_INFO
2017-10-24	Name : The remote Fedora host is missing a security update. File : fedora_2017-515264ae24.nasl - Type : ACT_GATHER_INFO
2017-10-23	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201710-27.nasl - Type : ACT_GATHER_INFO
2017-10-18	Name : The remote Fedora host is missing a security update. File : fedora_2017-24f067299e.nasl - Type : ACT_GATHER_INFO
2017-10-13	Name : The remote EulerOS host is missing multiple security updates. File : EulerOS_SA-2017-1240.nasl - Type : ACT_GATHER_INFO
2017-10-13	Name : The remote EulerOS host is missing multiple security updates. File : EulerOS_SA-2017-1239.nasl - Type : ACT_GATHER_INFO
2017-10-09	Name : The remote Debian host is missing a security update. File : debian_DLA-1124.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20171002_dnsmasq_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-3430-1.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2017-2619-1.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2017-2618-1.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2017-2617-1.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2017-2616-1.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20171002_dnsmasq_on_SL7_x.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2017-2838.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2017-907.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2017-2836.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2017-2838.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote Debian host is missing a security-related update. File : debian_DSA-3989.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote DNS / DHCP service is affected by multiple vulnerabilities. File : dnsmasq_2_78.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_b77b5646a77811e7ac58b499baebfeaf.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote openSUSE host is missing a security update. File : openSUSE-2017-1116.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2017-2836.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2017-275-01.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote OracleVM host is missing a security update. File : oraclevm_OVMSA-2017-0160.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2017-2836.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2017-2837.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2017-2838.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2017-2839.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2017-2840.nasl - Type : ACT_GATHER_INFO
2017-10-03	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2017-2841.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2018-02-01 21:22:27	Multiple Updates
2017-10-14 00:24:39	Multiple Updates
2017-10-12 00:25:13	Multiple Updates
2017-10-10 09:25:11	Multiple Updates
2017-10-04 13:25:04	Multiple Updates
2017-10-02 17:23:25	First insertion

Global Informations

Type	Count
CWE ID(s)	6
CPE ID(s)	273
Snort® Rule(s)	7
Nessus® Exploit(s)	34

	Related
9.8	CVE-2017-14493
9.8	CVE-2017-14492
9.8	CVE-2017-14491
7.8	USN-3430-3
7.8	USN-3430-2
7.5	CVE-2017-14496
7.5	CVE-2017-14495
5.9	CVE-2017-14494
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 8 more Alert(s)

7.8 - USN-3430-1

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

Snort® IPS/IDS

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU