CVE-2015-3294

Published: 27 April 2015

The tcp_request function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setup_reply function, which allows remote attackers to read process memory and cause a denial of service (out-of-bounds read and crash) via a malformed DNS request.

Priority

Status

Package	Release	Status
dnsmasq Launchpad, Ubuntu, Debian	lucid	Ignored (end of life)
	precise	Released (2.59-4ubuntu0.2)
	trusty	Released (2.68-1ubuntu0.1)
	upstream	Needed
	utopic	Released (2.71-1ubuntu0.1)
	vivid	Released (2.72-3ubuntu0.1)
	Patches: upstream: http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=ad4a8ff7d9097008d7623df8543df435bfddeac8

References

http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2015q2/009382.html
https://www.obrela.com/home/security-labs/advisories/osi-advisory-osi-1502/
https://ubuntu.com/security/notices/USN-2593-1
https://www.cve.org/CVERecord?id=CVE-2015-3294
NVD
Launchpad
Debian

Bugs

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=783459

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›