CVE-2021-45951
Published: 1 January 2022
** DISPUTED ** Dnsmasq 2.86 has a heap-based buffer overflow in check_bad_address (called from check_for_bogus_wildcard and FuzzCheckForBogusWildcard). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge."
Priority
CVSS 3 base score: 9.8
Notes
Author | Note |
---|---|
mdeslaur | vendor has disputed this CVE, marking as not-affected |
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45951
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35868
- https://github.com/google/oss-fuzz-vulns/blob/main/vulns/dnsmasq/OSV-2021-924.yaml
- NVD
- Launchpad
- Debian