Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2012-3411

Published: 5 March 2013

Dnsmasq before 2.63test1, when used with certain libvirt configurations, replies to requests from prohibited interfaces, which allows remote attackers to cause a denial of service (traffic amplification) via a spoofed DNS query.

Notes

AuthorNote
jdstrand 
patch sent upstream but not yet sent upstream or in the git
repository (http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=summary)
mdeslaur 
upstream has added a new --bind-dynamic option in 2.63 instead
of using the RH patch. libvirt needs to be modified to use
--bind-dynamic also.
seth-arnold 
(pt2) fixes a likely FTBFS introduced by (pt1) -- there may be more,
the commit message didn't make finding this one easy
mdeslaur 
changes are intrusive and may introduce behaviour changes in
stable releases. We will not be backporting this fix.
Marking as ignored.

Priority

Low

Status

Package Release Status
dnsmasq
Launchpad, Ubuntu, Debian 		hardy Ignored
(end of life)
lucid Ignored

natty Ignored

oneiric Ignored
(end of life)
precise Ignored

quantal Not vulnerable
(2.63-1ubuntu1)
raring Not vulnerable
(2.63-1ubuntu1)
saucy Not vulnerable
(2.63-1ubuntu1)
upstream Needs triage

Patches:
upstream: http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=54dd393f3938fc0c19088fbd319b95e37d81a2b0
upstream: http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=2f38141f434e23292f84cefc33e8de76fb856147





libvirt
Launchpad, Ubuntu, Debian 		hardy Ignored
(end of life)
lucid Ignored

natty Ignored

oneiric Ignored
(end of life)
precise Ignored

quantal Ignored

raring Not vulnerable
(1.0.2-0ubuntu6)
saucy Not vulnerable
(1.0.2-0ubuntu6)
upstream Needs triage

Patches:


upstream: http://libvirt.org/git/?p=libvirt.git;a=commit;h=719c2c7665e5826a8cf05531080fe20354b39de1
upstream: http://libvirt.org/git/?p=libvirt.git;a=commit;h=bf402e77b6d53a4e569b3aa76aef9c7d589c0cf2
upstream: http://libvirt.org/git/?p=libvirt.git;a=commit;h=753ff83a50263d6975f88d6605d4b5ddfcc97560
upstream: http://libvirt.org/git/?p=libvirt.git;a=commit;h=5114431396fd125b6ebe4d1a20a981111f948ee7
upstream: http://libvirt.org/git/?p=libvirt.git;a=commit;h=ff33f807739dc2950e4df8c1d4007ce9f8b290c0

References

Bugs

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading