Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2017-14491 (GCVE-0-2017-14491)
Vulnerability from cvelistv5
Published
2017-10-02 21:00
Modified
2024-08-05 19:27
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T19:27:40.755Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "1039474",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1039474"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq"
},
{
"name": "DSA-3989",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2017/dsa-3989"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"name": "101085",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/101085"
},
{
"name": "USN-3430-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-3430-1"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=0549c73b7ea6b22a3c49beb4d432f185a81efcbc"
},
{
"name": "101977",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/101977"
},
{
"name": "RHSA-2017:2838",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2838"
},
{
"name": "VU#973527",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "https://www.kb.cert.org/vuls/id/973527"
},
{
"name": "GLSA-201710-27",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/201710-27"
},
{
"name": "RHSA-2017:2840",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2840"
},
{
"name": "USN-3430-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-3430-2"
},
{
"name": "RHSA-2017:2839",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2839"
},
{
"name": "[dnsmasq-discuss] 20171002 Announce: dnsmasq-2.78.",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11665.html"
},
{
"name": "RHSA-2017:2836",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2836"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4561"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt"
},
{
"name": "RHSA-2017:2837",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2837"
},
{
"name": "42941",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB",
"x_transferred"
],
"url": "https://www.exploit-db.com/exploits/42941/"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://thekelleys.org.uk/dnsmasq/CHANGELOG"
},
{
"name": "RHSA-2017:2841",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2841"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4560"
},
{
"name": "openSUSE-SU-2017:2633",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00006.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
},
{
"name": "[dnsmasq-discuss] 20171002 IMPORTANT SECURITY INFORMATION.",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11664.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf"
},
{
"name": "FEDORA-2017-515264ae24",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD/"
},
{
"name": "FEDORA-2017-24f067299e",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV/"
},
{
"name": "USN-3430-3",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-3430-3"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html"
},
{
"name": "SUSE-SU-2017:2619",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00005.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449"
},
{
"name": "FEDORA-2017-7106a157f5",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB/"
},
{
"name": "SUSE-SU-2017:2616",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00003.html"
},
{
"name": "SUSE-SU-2017:2617",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00004.html"
},
{
"name": "DSA-3989",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2017/dsa-3989"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2017-10-02T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-11-08T11:42:39",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "1039474",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1039474"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq"
},
{
"name": "DSA-3989",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2017/dsa-3989"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"name": "101085",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/101085"
},
{
"name": "USN-3430-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-3430-1"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=0549c73b7ea6b22a3c49beb4d432f185a81efcbc"
},
{
"name": "101977",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/101977"
},
{
"name": "RHSA-2017:2838",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2838"
},
{
"name": "VU#973527",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "https://www.kb.cert.org/vuls/id/973527"
},
{
"name": "GLSA-201710-27",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/201710-27"
},
{
"name": "RHSA-2017:2840",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2840"
},
{
"name": "USN-3430-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-3430-2"
},
{
"name": "RHSA-2017:2839",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2839"
},
{
"name": "[dnsmasq-discuss] 20171002 Announce: dnsmasq-2.78.",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11665.html"
},
{
"name": "RHSA-2017:2836",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2836"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4561"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt"
},
{
"name": "RHSA-2017:2837",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2837"
},
{
"name": "42941",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB"
],
"url": "https://www.exploit-db.com/exploits/42941/"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://thekelleys.org.uk/dnsmasq/CHANGELOG"
},
{
"name": "RHSA-2017:2841",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2841"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4560"
},
{
"name": "openSUSE-SU-2017:2633",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00006.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
},
{
"name": "[dnsmasq-discuss] 20171002 IMPORTANT SECURITY INFORMATION.",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11664.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf"
},
{
"name": "FEDORA-2017-515264ae24",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD/"
},
{
"name": "FEDORA-2017-24f067299e",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV/"
},
{
"name": "USN-3430-3",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-3430-3"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html"
},
{
"name": "SUSE-SU-2017:2619",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00005.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449"
},
{
"name": "FEDORA-2017-7106a157f5",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB/"
},
{
"name": "SUSE-SU-2017:2616",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00003.html"
},
{
"name": "SUSE-SU-2017:2617",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00004.html"
},
{
"name": "DSA-3989",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2017/dsa-3989"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-14491",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "1039474",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1039474"
},
{
"name": "https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq",
"refsource": "CONFIRM",
"url": "https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq"
},
{
"name": "DSA-3989",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2017/dsa-3989"
},
{
"name": "https://access.redhat.com/security/vulnerabilities/3199382",
"refsource": "CONFIRM",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"name": "101085",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/101085"
},
{
"name": "USN-3430-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-3430-1"
},
{
"name": "http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=0549c73b7ea6b22a3c49beb4d432f185a81efcbc",
"refsource": "CONFIRM",
"url": "http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=0549c73b7ea6b22a3c49beb4d432f185a81efcbc"
},
{
"name": "101977",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/101977"
},
{
"name": "RHSA-2017:2838",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:2838"
},
{
"name": "VU#973527",
"refsource": "CERT-VN",
"url": "https://www.kb.cert.org/vuls/id/973527"
},
{
"name": "GLSA-201710-27",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201710-27"
},
{
"name": "RHSA-2017:2840",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:2840"
},
{
"name": "USN-3430-2",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-3430-2"
},
{
"name": "RHSA-2017:2839",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:2839"
},
{
"name": "[dnsmasq-discuss] 20171002 Announce: dnsmasq-2.78.",
"refsource": "MLIST",
"url": "https://www.mail-archive.com/dnsmasq-discuss@lists.thekelleys.org.uk/msg11665.html"
},
{
"name": "RHSA-2017:2836",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:2836"
},
{
"name": "http://nvidia.custhelp.com/app/answers/detail/a_id/4561",
"refsource": "CONFIRM",
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4561"
},
{
"name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt",
"refsource": "CONFIRM",
"url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt"
},
{
"name": "RHSA-2017:2837",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:2837"
},
{
"name": "42941",
"refsource": "EXPLOIT-DB",
"url": "https://www.exploit-db.com/exploits/42941/"
},
{
"name": "http://thekelleys.org.uk/dnsmasq/CHANGELOG",
"refsource": "CONFIRM",
"url": "http://thekelleys.org.uk/dnsmasq/CHANGELOG"
},
{
"name": "RHSA-2017:2841",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:2841"
},
{
"name": "http://nvidia.custhelp.com/app/answers/detail/a_id/4560",
"refsource": "CONFIRM",
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4560"
},
{
"name": "openSUSE-SU-2017:2633",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00006.html"
},
{
"name": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"refsource": "MISC",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
},
{
"name": "[dnsmasq-discuss] 20171002 IMPORTANT SECURITY INFORMATION.",
"refsource": "MLIST",
"url": "https://www.mail-archive.com/dnsmasq-discuss@lists.thekelleys.org.uk/msg11664.html"
},
{
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf",
"refsource": "CONFIRM",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf"
},
{
"name": "FEDORA-2017-515264ae24",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD/"
},
{
"name": "FEDORA-2017-24f067299e",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV/"
},
{
"name": "USN-3430-3",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-3430-3"
},
{
"name": "http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html",
"refsource": "MISC",
"url": "http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html"
},
{
"name": "SUSE-SU-2017:2619",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00005.html"
},
{
"name": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/",
"refsource": "CONFIRM",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/"
},
{
"name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en",
"refsource": "CONFIRM",
"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en"
},
{
"name": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449",
"refsource": "CONFIRM",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449"
},
{
"name": "FEDORA-2017-7106a157f5",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB/"
},
{
"name": "SUSE-SU-2017:2616",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00003.html"
},
{
"name": "SUSE-SU-2017:2617",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00004.html"
},
{
"name": "DSA-3989",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-3989"
},
{
"name": "https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30",
"refsource": "MISC",
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2017-14491",
"datePublished": "2017-10-02T21:00:00",
"dateReserved": "2017-09-15T00:00:00",
"dateUpdated": "2024-08-05T19:27:40.755Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2017-14491\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2017-10-04T01:29:02.870\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.\"},{\"lang\":\"es\",\"value\":\"Un desbordamiento de b\u00fafer basado en memoria din\u00e1mica (heap) en dnsmasq en versiones anteriores a la 2.78 permite a los atacantes provocar una denegaci\u00f3n de servicio (cierre inesperado) o ejecutar c\u00f3digo arbitrario utilizando una respuesta DNS manipulada.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:thekelleys:dnsmasq:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.77\",\"matchCriteriaId\":\"B85D7A28-8CBA-4D77-AD30-DB3CA49F2F98\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33C068A4-3780-4EAB-A937-6082DF847564\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BBCD86A-E6C7-4444-9D74-F861084090F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51EF4996-72F4-4FA4-814F-F5991E7A8318\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5ED5807-55B7-47C5-97A6-03233F4FBC3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"825ECE2D-E232-46E0-A047-074B34DB1E97\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*\",\"matchCriteriaId\":\"CB66DB75-2B16-4EBF-9B93-CE49D8086E41\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"B6B7CAD7-9D4E-4FDB-88E3-1E583210A01F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"B5A6F2F3-4894-4392-8296-3B8DD2679084\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:17.04:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"588D4F37-0A56-47A4-B710-4D5F3D214FB9\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"16F59A04-14CF-49E2-9973-645477EA09DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B21E9A8-CE63-42C2-A11A-94D977A96DF1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:42.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1EA337A3-B9A3-4962-B8BD-8E0C7C5B28EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F65DAB0-3DAD-49FF-BC73-3581CC3D5BF3\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp3:*:*:*:*:*:*\",\"matchCriteriaId\":\"58D3B6FD-B474-4B09-B644-A8634A629280\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp4:*:*:*:*:*:*\",\"matchCriteriaId\":\"F892F1B0-514C-42F7-90AE-12ACDFDC1033\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:suse:linux_enterprise_point_of_sale:11:sp3:*:*:*:*:*:*\",\"matchCriteriaId\":\"0FC411C9-9A8A-49D0-B704-2207674778CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:ltss:*:*:*\",\"matchCriteriaId\":\"B12243B2-D726-404C-ABFF-F1AB51BA1783\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:11:sp4:*:*:*:*:*:*\",\"matchCriteriaId\":\"55C5561F-BE86-4EEA-99D4-8697F8BD9DFE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:12:*:*:*:ltss:*:*:*\",\"matchCriteriaId\":\"B2F3699A-38E4-4E9D-9414-411F71D9E371\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nvidia:linux_for_tegra:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"r21.6\",\"matchCriteriaId\":\"54DF7A22-DF8B-4272-8EC6-48173E8860B8\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nvidia:jetson_tk1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"810B05A3-29CF-464F-9E63-8238AA0651AF\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:nvidia:linux_for_tegra:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"r24.2.2\",\"matchCriteriaId\":\"22159717-67FD-4A10-9F65-4434FEC1F922\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:nvidia:jetson_tx1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86D1FDAD-C594-43D9-9BF6-F7461177AB91\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nvidia:geforce_experience:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.0\",\"versionEndExcluding\":\"3.10.0.55\",\"matchCriteriaId\":\"5454038C-F1F0-4061-8B5C-04A8CF1658C6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2572D17-1DE6-457B-99CC-64AFD54487EA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:honor_v9_play_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"jimmy-al00ac00b135\",\"matchCriteriaId\":\"CF744446-5C60-4C66-BE6B-DD108487B46C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:huawei:honor_v9_play:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B543AF24-5D59-4A46-AC76-0EFF314E3D1A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"4.15\",\"matchCriteriaId\":\"E861FF18-4E42-4092-81B6-0BB32679B2CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.16\",\"versionEndExcluding\":\"4.16.13m\",\"matchCriteriaId\":\"E2DED50F-C1ED-43EB-9E63-B65F4F287F41\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.17\",\"versionEndExcluding\":\"4.17.8m\",\"matchCriteriaId\":\"B5F144E5-EFB1-47E7-A2D2-28DEE6045CF6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.18\",\"versionEndIncluding\":\"4.18.4.2f\",\"matchCriteriaId\":\"8F1A3AF8-D105-4F13-8921-D94DCC7DE1AF\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:ruggedcom_rm1224_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.0\",\"matchCriteriaId\":\"63C108C5-0EF5-4C6D-8D83-ADB5EED24A6F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:ruggedcom_rm1224:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"284DF779-D900-48B4-A177-7281CD445AB5\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_m-800_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.0\",\"matchCriteriaId\":\"E25B682B-83F5-4903-9138-16907DC7A859\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_m-800:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DFB9921A-5204-40A3-88AB-B7755F5C6875\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_s615_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.0\",\"matchCriteriaId\":\"E8B2D681-1FBF-4013-B223-9878F4F1DB27\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_s615:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E917CBBB-EF41-4113-B0CA-EB91889235E7\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_w1750d_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5.1.5\",\"matchCriteriaId\":\"AE55F796-FA73-4992-9826-57A00F77F6CA\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_w1750d:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FBC30055-239F-4BB1-B2D1-E5E35F0D8911\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.3.1\",\"versionEndExcluding\":\"6.3.1.25\",\"matchCriteriaId\":\"CFE6B116-71BB-49BF-A5EF-4460D9089511\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.4.4.0\",\"versionEndExcluding\":\"6.4.4.16\",\"matchCriteriaId\":\"193354A0-B108-4CA4-A1C3-F5F23147A295\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.5.0.0\",\"versionEndExcluding\":\"6.5.1.9\",\"matchCriteriaId\":\"47D1AB4F-0922-49AF-9AE5-AEB4019E652C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.5.3.0\",\"versionEndExcluding\":\"6.5.3.3\",\"matchCriteriaId\":\"8F5D03FA-CE4E-4888-88E2-384986A890BA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.5.4.0\",\"versionEndExcluding\":\"6.5.4.2\",\"matchCriteriaId\":\"E39B25F2-C65B-457F-A36E-14FC8285A004\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.1.0.0\",\"versionEndExcluding\":\"8.1.0.4\",\"matchCriteriaId\":\"00E53FE9-EA96-456A-B522-FC81DD0CCE3E\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:synology:router_manager:1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46261C28-E276-4639-BA3D-A735B02599F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:synology:diskstation_manager:5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"01527614-8A68-48DC-B0A0-F4AA99489221\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:synology:diskstation_manager:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"65372FA7-B54B-4298-99BF-483E9FEBA253\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:synology:diskstation_manager:6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D04EA1A-F8E0-415B-8786-1C8C0F08E132\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00003.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00004.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00005.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00006.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://nvidia.custhelp.com/app/answers/detail/a_id/4560\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://nvidia.custhelp.com/app/answers/detail/a_id/4561\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://thekelleys.org.uk/dnsmasq/CHANGELOG\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"http://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=0549c73b7ea6b22a3c49beb4d432f185a81efcbc\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.debian.org/security/2017/dsa-3989\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/101085\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.securityfocus.com/bid/101977\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.securitytracker.com/id/1039474\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-3430-1\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-3430-2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-3430-3\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2836\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2837\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2838\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2839\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2840\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2841\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/security/vulnerabilities/3199382\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://security.gentoo.org/glsa/201710-27\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mitigation\",\"Third Party Advisory\"]},{\"url\":\"https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-3989\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.exploit-db.com/exploits/42941/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.kb.cert.org/vuls/id/973527\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11664.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11665.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00003.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00004.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00005.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00006.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://nvidia.custhelp.com/app/answers/detail/a_id/4560\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://nvidia.custhelp.com/app/answers/detail/a_id/4561\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://thekelleys.org.uk/dnsmasq/CHANGELOG\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"http://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=0549c73b7ea6b22a3c49beb4d432f185a81efcbc\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.debian.org/security/2017/dsa-3989\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/101085\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.securityfocus.com/bid/101977\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.securitytracker.com/id/1039474\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-3430-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-3430-2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-3430-3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2836\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2837\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2838\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2839\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2840\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2841\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/security/vulnerabilities/3199382\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/201710-27\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Third Party Advisory\"]},{\"url\":\"https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2017/dsa-3989\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.exploit-db.com/exploits/42941/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://www.kb.cert.org/vuls/id/973527\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11664.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11665.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
rhsa-2017:2836
Vulnerability from csaf_redhat
Published
2017-10-02 17:18
Modified
2024-11-22 11:34
Summary
Red Hat Security Advisory: dnsmasq security update
Notes
Topic
An update for dnsmasq is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.
Security Fix(es):
* A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. (CVE-2017-14491)
* A heap buffer overflow was discovered in dnsmasq in the IPv6 router advertisement (RA) handling code. An attacker on the local network segment could send crafted RAs to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. This issue only affected configurations using one of these options: enable-ra, ra-only, slaac, ra-names, ra-advrouter, or ra-stateless. (CVE-2017-14492)
* A stack buffer overflow was found in dnsmasq in the DHCPv6 code. An attacker on the local network could send a crafted DHCPv6 request to dnsmasq which would cause it to a crash or, potentially, execute arbitrary code. (CVE-2017-14493)
* An information leak was found in dnsmasq in the DHCPv6 relay code. An attacker on the local network could send crafted DHCPv6 packets to dnsmasq causing it to forward the contents of process memory, potentially leaking sensitive data. (CVE-2017-14494)
* A memory exhaustion flaw was found in dnsmasq in the EDNS0 code. An attacker could send crafted DNS packets which would trigger memory allocations which would never be freed, leading to unbounded memory consumption and eventually a crash. This issue only affected configurations using one of the options: add-mac, add-cpe-id, or add-subnet. (CVE-2017-14495)
* An integer underflow flaw leading to a buffer over-read was found in dnsmasq in the EDNS0 code. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash. This issue only affected configurations using one of the options: add-mac, add-cpe-id, or add-subnet. (CVE-2017-14496)
Red Hat would like to thank Felix Wilhelm (Google Security Team), Fermin J. Serna (Google Security Team), Gabriel Campana (Google Security Team), Kevin Hamacher (Google Security Team), and Ron Bowes (Google Security Team) for reporting these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for dnsmasq is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.\n\nSecurity Fix(es):\n\n* A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. (CVE-2017-14491)\n\n* A heap buffer overflow was discovered in dnsmasq in the IPv6 router advertisement (RA) handling code. An attacker on the local network segment could send crafted RAs to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. This issue only affected configurations using one of these options: enable-ra, ra-only, slaac, ra-names, ra-advrouter, or ra-stateless. (CVE-2017-14492)\n\n* A stack buffer overflow was found in dnsmasq in the DHCPv6 code. An attacker on the local network could send a crafted DHCPv6 request to dnsmasq which would cause it to a crash or, potentially, execute arbitrary code. (CVE-2017-14493)\n\n* An information leak was found in dnsmasq in the DHCPv6 relay code. An attacker on the local network could send crafted DHCPv6 packets to dnsmasq causing it to forward the contents of process memory, potentially leaking sensitive data. (CVE-2017-14494)\n\n* A memory exhaustion flaw was found in dnsmasq in the EDNS0 code. An attacker could send crafted DNS packets which would trigger memory allocations which would never be freed, leading to unbounded memory consumption and eventually a crash. This issue only affected configurations using one of the options: add-mac, add-cpe-id, or add-subnet. (CVE-2017-14495)\n\n* An integer underflow flaw leading to a buffer over-read was found in dnsmasq in the EDNS0 code. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash. This issue only affected configurations using one of the options: add-mac, add-cpe-id, or add-subnet. (CVE-2017-14496)\n\nRed Hat would like to thank Felix Wilhelm (Google Security Team), Fermin J. Serna (Google Security Team), Gabriel Campana (Google Security Team), Kevin Hamacher (Google Security Team), and Ron Bowes (Google Security Team) for reporting these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:2836",
"url": "https://access.redhat.com/errata/RHSA-2017:2836"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "1495409",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495409"
},
{
"category": "external",
"summary": "1495410",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495410"
},
{
"category": "external",
"summary": "1495411",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495411"
},
{
"category": "external",
"summary": "1495412",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495412"
},
{
"category": "external",
"summary": "1495415",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495415"
},
{
"category": "external",
"summary": "1495416",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495416"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_2836.json"
}
],
"title": "Red Hat Security Advisory: dnsmasq security update",
"tracking": {
"current_release_date": "2024-11-22T11:34:05+00:00",
"generator": {
"date": "2024-11-22T11:34:05+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:2836",
"initial_release_date": "2017-10-02T17:18:46+00:00",
"revision_history": [
{
"date": "2017-10-02T17:18:46+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-10-02T17:18:46+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:34:05+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-0:2.76-2.el7_4.2.x86_64",
"product": {
"name": "dnsmasq-0:2.76-2.el7_4.2.x86_64",
"product_id": "dnsmasq-0:2.76-2.el7_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.76-2.el7_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"product": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"product_id": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.76-2.el7_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"product": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"product_id": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.76-2.el7_4.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-0:2.76-2.el7_4.2.src",
"product": {
"name": "dnsmasq-0:2.76-2.el7_4.2.src",
"product_id": "dnsmasq-0:2.76-2.el7_4.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.76-2.el7_4.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"product": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"product_id": "dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.76-2.el7_4.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"product": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"product_id": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.76-2.el7_4.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"product": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"product_id": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.76-2.el7_4.2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64",
"product": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64",
"product_id": "dnsmasq-0:2.76-2.el7_4.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.76-2.el7_4.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"product": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"product_id": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.76-2.el7_4.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"product": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"product_id": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.76-2.el7_4.2?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-0:2.76-2.el7_4.2.s390x",
"product": {
"name": "dnsmasq-0:2.76-2.el7_4.2.s390x",
"product_id": "dnsmasq-0:2.76-2.el7_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.76-2.el7_4.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"product": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"product_id": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.76-2.el7_4.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"product": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"product_id": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.76-2.el7_4.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"product": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"product_id": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.76-2.el7_4.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"product": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"product_id": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.76-2.el7_4.2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Client-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Client-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.src as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.src",
"relates_to_product_reference": "7Client-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Client-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7Client-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Client-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Client-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Client-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7Client-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Client-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Client-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Client-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
"product_id": "7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Client-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Client-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Client-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Client-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.src",
"relates_to_product_reference": "7Client-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Client-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7Client-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Client-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Client-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Client-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Client-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7Client-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Client-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Client-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Client-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)",
"product_id": "7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Client-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.src as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.src",
"relates_to_product_reference": "7ComputeNode-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7ComputeNode-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7ComputeNode-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7ComputeNode-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7ComputeNode-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7ComputeNode-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.src",
"relates_to_product_reference": "7ComputeNode-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7ComputeNode-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7ComputeNode-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Server-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Server-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.src",
"relates_to_product_reference": "7Server-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7Server-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Server-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Server-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7Server-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Server-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Server-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Server-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Server-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.src",
"relates_to_product_reference": "7Server-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7Server-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Server-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Server-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7Server-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Server-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Server-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.src",
"relates_to_product_reference": "7Workstation-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7Workstation-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7Workstation-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Workstation-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Workstation-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Workstation-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Workstation-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Workstation-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.src",
"relates_to_product_reference": "7Workstation-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Workstation-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"relates_to_product_reference": "7Workstation-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"relates_to_product_reference": "7Workstation-optional-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.4.Z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Felix Wilhelm",
"Fermin J. Serna",
"Gabriel Campana",
"Kevin Hamacher",
"Ron Bowes"
],
"organization": "Google Security Team"
}
],
"cve": "CVE-2017-14491",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-09-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495409"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dnsmasq: heap overflow in the code responsible for building DNS replies",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform includes the dnsmasq-utils RPM which does not contain this flaw\u0027s affected code-paths; Red Hat OpenStack Platform is therefore listed as not affected.\n\nHowever, because all versions of Red Hat OpenStack Platform are based on Red Hat Enterprise Linux, all Red Hat OpenStack Platform users should absolutely upgrade the dnsmasq RPM from Red Hat Enterprise Linux as a matter of urgency using standard update mechanisms (such as \u0027yum update\u0027 or \u0027openstack overcloud update\u0027).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14491"
},
{
"category": "external",
"summary": "RHBZ#1495409",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495409"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14491",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14491"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14491",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14491"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
}
],
"release_date": "2017-10-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-10-02T17:18:46+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2836"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "dnsmasq: heap overflow in the code responsible for building DNS replies"
},
{
"acknowledgments": [
{
"names": [
"Felix Wilhelm",
"Fermin J. Serna",
"Gabriel Campana",
"Kevin Hamacher",
"Ron Bowes"
],
"organization": "Google Security Team"
}
],
"cve": "CVE-2017-14492",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-09-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495410"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow was discovered in dnsmasq in the IPv6 router advertisement (RA) handling code. An attacker on the local network segment could send crafted RAs to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. This issue only affected configurations using one of these options: enable-ra, ra-only, slaac, ra-names, ra-advrouter, or ra-stateless.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dnsmasq: heap overflow in the IPv6 router advertisement code",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform includes the dnsmasq-utils RPM which does not contain this flaw\u0027s affected code-paths; Red Hat OpenStack Platform is therefore listed as not affected.\n\nHowever, because all versions of Red Hat OpenStack Platform are based on Red Hat Enterprise Linux, all Red Hat OpenStack Platform users should absolutely upgrade the dnsmasq RPM from Red Hat Enterprise Linux as a matter of urgency using standard update mechanisms (such as \u0027yum update\u0027 or \u0027openstack overcloud update\u0027).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14492"
},
{
"category": "external",
"summary": "RHBZ#1495410",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495410"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14492",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14492"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14492",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14492"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
}
],
"release_date": "2017-10-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-10-02T17:18:46+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2836"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 8.3,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "dnsmasq: heap overflow in the IPv6 router advertisement code"
},
{
"acknowledgments": [
{
"names": [
"Felix Wilhelm",
"Fermin J. Serna",
"Gabriel Campana",
"Kevin Hamacher",
"Ron Bowes"
],
"organization": "Google Security Team"
}
],
"cve": "CVE-2017-14493",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2017-09-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495411"
}
],
"notes": [
{
"category": "description",
"text": "A stack buffer overflow was found in dnsmasq in the DHCPv6 code. An attacker on the local network could send a crafted DHCPv6 request to dnsmasq which would cause it to a crash or, potentially, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dnsmasq: stack buffer overflow in the DHCPv6 code",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform includes the dnsmasq-utils RPM which does not contain this flaw\u0027s affected code-paths; Red Hat OpenStack Platform is therefore listed as not affected.\n\nHowever, because all versions of Red Hat OpenStack Platform are based on Red Hat Enterprise Linux, all Red Hat OpenStack Platform users should absolutely upgrade the dnsmasq RPM from Red Hat Enterprise Linux as a matter of urgency using standard update mechanisms (such as \u0027yum update\u0027 or \u0027openstack overcloud update\u0027).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14493"
},
{
"category": "external",
"summary": "RHBZ#1495411",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495411"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14493",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14493"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14493",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14493"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
}
],
"release_date": "2017-10-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-10-02T17:18:46+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2836"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 8.3,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "dnsmasq: stack buffer overflow in the DHCPv6 code"
},
{
"acknowledgments": [
{
"names": [
"Felix Wilhelm",
"Fermin J. Serna",
"Gabriel Campana",
"Kevin Hamacher",
"Ron Bowes"
],
"organization": "Google Security Team"
}
],
"cve": "CVE-2017-14494",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-09-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495412"
}
],
"notes": [
{
"category": "description",
"text": "An information leak was found in dnsmasq in the DHCPv6 relay code. An attacker on the local network could send crafted DHCPv6 packets to dnsmasq causing it to forward the contents of process memory, potentially leaking sensitive data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dnsmasq: information leak in the DHCPv6 relay code",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform includes the dnsmasq-utils RPM which does not contain this flaw\u0027s affected code-paths; Red Hat OpenStack Platform is therefore listed as not affected.\n\nHowever, because all versions of Red Hat OpenStack Platform are based on Red Hat Enterprise Linux, all Red Hat OpenStack Platform users should absolutely upgrade the dnsmasq RPM from Red Hat Enterprise Linux as a matter of urgency using standard update mechanisms (such as \u0027yum update\u0027 or \u0027openstack overcloud update\u0027).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14494"
},
{
"category": "external",
"summary": "RHBZ#1495412",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495412"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14494",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14494"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14494",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14494"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
}
],
"release_date": "2017-10-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-10-02T17:18:46+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2836"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 7.8,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dnsmasq: information leak in the DHCPv6 relay code"
},
{
"acknowledgments": [
{
"names": [
"Felix Wilhelm",
"Fermin J. Serna",
"Gabriel Campana",
"Kevin Hamacher",
"Ron Bowes"
],
"organization": "Google Security Team"
}
],
"cve": "CVE-2017-14495",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2017-09-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495415"
}
],
"notes": [
{
"category": "description",
"text": "A memory exhaustion flaw was found in dnsmasq in the EDNS0 code. An attacker could send crafted DNS packets which would trigger memory allocations which would never be freed, leading to unbounded memory consumption and eventually a crash. This issue only affected configurations using one of the options: add-mac, add-cpe-id, or add-subnet.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dnsmasq: memory exhaustion vulnerability in the EDNS0 code",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform includes the dnsmasq-utils RPM which does not contain this flaw\u0027s affected code-paths; Red Hat OpenStack Platform is therefore listed as not affected.\n\nHowever, because all versions of Red Hat OpenStack Platform are based on Red Hat Enterprise Linux, all Red Hat OpenStack Platform users should absolutely upgrade the dnsmasq RPM from Red Hat Enterprise Linux as a matter of urgency using standard update mechanisms (such as \u0027yum update\u0027 or \u0027openstack overcloud update\u0027).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14495"
},
{
"category": "external",
"summary": "RHBZ#1495415",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495415"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14495",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14495"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14495",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14495"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
}
],
"release_date": "2017-10-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-10-02T17:18:46+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2836"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dnsmasq: memory exhaustion vulnerability in the EDNS0 code"
},
{
"acknowledgments": [
{
"names": [
"Felix Wilhelm",
"Fermin J. Serna",
"Gabriel Campana",
"Kevin Hamacher",
"Ron Bowes"
],
"organization": "Google Security Team"
}
],
"cve": "CVE-2017-14496",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-09-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495416"
}
],
"notes": [
{
"category": "description",
"text": "An integer underflow flaw leading to a buffer over-read was found in dnsmasq in the EDNS0 code. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash. This issue only affected configurations using one of the options: add-mac, add-cpe-id, or add-subnet.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dnsmasq: integer underflow leading to buffer over-read in the EDNS0 code",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform includes the dnsmasq-utils RPM which does not contain this flaw\u0027s affected code-paths; Red Hat OpenStack Platform is therefore listed as not affected.\n\nHowever, because all versions of Red Hat OpenStack Platform are based on Red Hat Enterprise Linux, all Red Hat OpenStack Platform users should absolutely upgrade the dnsmasq RPM from Red Hat Enterprise Linux as a matter of urgency using standard update mechanisms (such as \u0027yum update\u0027 or \u0027openstack overcloud update\u0027).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14496"
},
{
"category": "external",
"summary": "RHBZ#1495416",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495416"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14496",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14496"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14496",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14496"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
}
],
"release_date": "2017-10-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-10-02T17:18:46+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2836"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Client-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Client-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7ComputeNode-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7ComputeNode-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Server-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Server-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.src",
"7Workstation-optional-7.4.Z:dnsmasq-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-debuginfo-0:2.76-2.el7_4.2.x86_64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.aarch64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.ppc64le",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.s390x",
"7Workstation-optional-7.4.Z:dnsmasq-utils-0:2.76-2.el7_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dnsmasq: integer underflow leading to buffer over-read in the EDNS0 code"
}
]
}
rhsa-2017:2839
Vulnerability from csaf_redhat
Published
2017-10-02 17:07
Modified
2024-11-22 11:34
Summary
Red Hat Security Advisory: dnsmasq security update
Notes
Topic
An update for dnsmasq is now available for Red Hat Enterprise Linux 6.2 Advanced Update Support, Red Hat Enterprise Linux 6.4 Advanced Update Support, Red Hat Enterprise Linux 6.5 Advanced Update Support, Red Hat Enterprise Linux 6.5 Telco Extended Update Support, Red Hat Enterprise Linux 6.6 Advanced Update Support, Red Hat Enterprise Linux 6.6 Telco Extended Update Support, and Red Hat Enterprise Linux 6.7 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.
Security Fix(es):
* A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. (CVE-2017-14491)
Red Hat would like to thank Felix Wilhelm (Google Security Team), Fermin J. Serna (Google Security Team), Gabriel Campana (Google Security Team), Kevin Hamacher (Google Security Team), and Ron Bowes (Google Security Team) for reporting this issue.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for dnsmasq is now available for Red Hat Enterprise Linux 6.2 Advanced Update Support, Red Hat Enterprise Linux 6.4 Advanced Update Support, Red Hat Enterprise Linux 6.5 Advanced Update Support, Red Hat Enterprise Linux 6.5 Telco Extended Update Support, Red Hat Enterprise Linux 6.6 Advanced Update Support, Red Hat Enterprise Linux 6.6 Telco Extended Update Support, and Red Hat Enterprise Linux 6.7 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.\n\nSecurity Fix(es):\n\n* A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. (CVE-2017-14491)\n\nRed Hat would like to thank Felix Wilhelm (Google Security Team), Fermin J. Serna (Google Security Team), Gabriel Campana (Google Security Team), Kevin Hamacher (Google Security Team), and Ron Bowes (Google Security Team) for reporting this issue.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:2839",
"url": "https://access.redhat.com/errata/RHSA-2017:2839"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "1495409",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495409"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_2839.json"
}
],
"title": "Red Hat Security Advisory: dnsmasq security update",
"tracking": {
"current_release_date": "2024-11-22T11:34:20+00:00",
"generator": {
"date": "2024-11-22T11:34:20+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:2839",
"initial_release_date": "2017-10-02T17:07:36+00:00",
"revision_history": [
{
"date": "2017-10-02T17:07:36+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-10-02T17:07:36+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:34:20+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product": {
"name": "Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:6.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:6.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product": {
"name": "Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:6.5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:6.5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server TUS (v. 6.5)",
"product": {
"name": "Red Hat Enterprise Linux Server TUS (v. 6.5)",
"product_id": "6Server-6.5.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:6.5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
"product_id": "6Server-optional-6.5.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:6.5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS (v. 6.6)",
"product": {
"name": "Red Hat Enterprise Linux Server AUS (v. 6.6)",
"product_id": "6Server-6.6.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:6.6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
"product_id": "6Server-optional-6.6.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:6.6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server TUS (v. 6.6)",
"product": {
"name": "Red Hat Enterprise Linux Server TUS (v. 6.6)",
"product_id": "6Server-6.6.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:6.6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
"product_id": "6Server-optional-6.6.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:6.6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node EUS (v. 6.7)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node EUS (v. 6.7)",
"product_id": "6ComputeNode-6.7.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:6.7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7)",
"product_id": "6ComputeNode-optional-6.7.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:6.7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product": {
"name": "Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-6.7.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:6.7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 6.7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 6.7)",
"product_id": "6Server-optional-6.7.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:6.7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS (v. 6.2)",
"product": {
"name": "Red Hat Enterprise Linux Server AUS (v. 6.2)",
"product_id": "6Server-6.2.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_mission_critical:6.2::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-0:2.48-13.el6_4.1.src",
"product": {
"name": "dnsmasq-0:2.48-13.el6_4.1.src",
"product_id": "dnsmasq-0:2.48-13.el6_4.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-13.el6_4.1?arch=src"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.48-13.el6_5.1.src",
"product": {
"name": "dnsmasq-0:2.48-13.el6_5.1.src",
"product_id": "dnsmasq-0:2.48-13.el6_5.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-13.el6_5.1?arch=src"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.48-14.el6_6.1.src",
"product": {
"name": "dnsmasq-0:2.48-14.el6_6.1.src",
"product_id": "dnsmasq-0:2.48-14.el6_6.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-14.el6_6.1?arch=src"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.48-16.el6_7.1.src",
"product": {
"name": "dnsmasq-0:2.48-16.el6_7.1.src",
"product_id": "dnsmasq-0:2.48-16.el6_7.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-16.el6_7.1?arch=src"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.48-5.el6_2.2.src",
"product": {
"name": "dnsmasq-0:2.48-5.el6_2.2.src",
"product_id": "dnsmasq-0:2.48-5.el6_2.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-5.el6_2.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.48-13.el6_4.1.x86_64",
"product": {
"name": "dnsmasq-utils-0:2.48-13.el6_4.1.x86_64",
"product_id": "dnsmasq-utils-0:2.48-13.el6_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.48-13.el6_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.48-13.el6_4.1.x86_64",
"product": {
"name": "dnsmasq-debuginfo-0:2.48-13.el6_4.1.x86_64",
"product_id": "dnsmasq-debuginfo-0:2.48-13.el6_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.48-13.el6_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.48-13.el6_4.1.x86_64",
"product": {
"name": "dnsmasq-0:2.48-13.el6_4.1.x86_64",
"product_id": "dnsmasq-0:2.48-13.el6_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-13.el6_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"product": {
"name": "dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"product_id": "dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.48-13.el6_5.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"product": {
"name": "dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"product_id": "dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.48-13.el6_5.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.48-13.el6_5.1.x86_64",
"product": {
"name": "dnsmasq-0:2.48-13.el6_5.1.x86_64",
"product_id": "dnsmasq-0:2.48-13.el6_5.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-13.el6_5.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"product": {
"name": "dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"product_id": "dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.48-14.el6_6.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"product": {
"name": "dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"product_id": "dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.48-14.el6_6.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.48-14.el6_6.1.x86_64",
"product": {
"name": "dnsmasq-0:2.48-14.el6_6.1.x86_64",
"product_id": "dnsmasq-0:2.48-14.el6_6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-14.el6_6.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.48-16.el6_7.1.x86_64",
"product": {
"name": "dnsmasq-0:2.48-16.el6_7.1.x86_64",
"product_id": "dnsmasq-0:2.48-16.el6_7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-16.el6_7.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"product": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"product_id": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.48-16.el6_7.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"product": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"product_id": "dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.48-16.el6_7.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.48-5.el6_2.2.x86_64",
"product": {
"name": "dnsmasq-0:2.48-5.el6_2.2.x86_64",
"product_id": "dnsmasq-0:2.48-5.el6_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-5.el6_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.48-5.el6_2.2.x86_64",
"product": {
"name": "dnsmasq-debuginfo-0:2.48-5.el6_2.2.x86_64",
"product_id": "dnsmasq-debuginfo-0:2.48-5.el6_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.48-5.el6_2.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"product": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"product_id": "dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.48-16.el6_7.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"product": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"product_id": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.48-16.el6_7.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.48-16.el6_7.1.s390x",
"product": {
"name": "dnsmasq-0:2.48-16.el6_7.1.s390x",
"product_id": "dnsmasq-0:2.48-16.el6_7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-16.el6_7.1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"product": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"product_id": "dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.48-16.el6_7.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"product": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"product_id": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.48-16.el6_7.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.48-16.el6_7.1.ppc64",
"product": {
"name": "dnsmasq-0:2.48-16.el6_7.1.ppc64",
"product_id": "dnsmasq-0:2.48-16.el6_7.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-16.el6_7.1?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"product": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"product_id": "dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.48-16.el6_7.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"product": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"product_id": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.48-16.el6_7.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.48-16.el6_7.1.i686",
"product": {
"name": "dnsmasq-0:2.48-16.el6_7.1.i686",
"product_id": "dnsmasq-0:2.48-16.el6_7.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-16.el6_7.1?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.i686 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.7)",
"product_id": "6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.i686",
"relates_to_product_reference": "6ComputeNode-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.ppc64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.7)",
"product_id": "6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.ppc64",
"relates_to_product_reference": "6ComputeNode-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.s390x as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.7)",
"product_id": "6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.s390x",
"relates_to_product_reference": "6ComputeNode-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.src as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.7)",
"product_id": "6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.src",
"relates_to_product_reference": "6ComputeNode-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.x86_64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.7)",
"product_id": "6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.x86_64",
"relates_to_product_reference": "6ComputeNode-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.7)",
"product_id": "6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"relates_to_product_reference": "6ComputeNode-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.7)",
"product_id": "6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"relates_to_product_reference": "6ComputeNode-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.7)",
"product_id": "6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"relates_to_product_reference": "6ComputeNode-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.7)",
"product_id": "6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"relates_to_product_reference": "6ComputeNode-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.i686 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.7)",
"product_id": "6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"relates_to_product_reference": "6ComputeNode-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.ppc64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.7)",
"product_id": "6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"relates_to_product_reference": "6ComputeNode-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.s390x as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.7)",
"product_id": "6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"relates_to_product_reference": "6ComputeNode-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.x86_64 as a component of Red Hat Enterprise Linux HPC Node EUS (v. 6.7)",
"product_id": "6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"relates_to_product_reference": "6ComputeNode-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.i686 as a component of Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7)",
"product_id": "6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7)",
"product_id": "6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.s390x as a component of Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7)",
"product_id": "6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.src as a component of Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7)",
"product_id": "6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.src",
"relates_to_product_reference": "6ComputeNode-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7)",
"product_id": "6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686 as a component of Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7)",
"product_id": "6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7)",
"product_id": "6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x as a component of Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7)",
"product_id": "6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7)",
"product_id": "6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.i686 as a component of Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7)",
"product_id": "6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7)",
"product_id": "6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.s390x as a component of Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7)",
"product_id": "6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional EUS (v. 6.7)",
"product_id": "6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-5.el6_2.2.src as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
"product_id": "6Server-6.2.AUS:dnsmasq-0:2.48-5.el6_2.2.src"
},
"product_reference": "dnsmasq-0:2.48-5.el6_2.2.src",
"relates_to_product_reference": "6Server-6.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-5.el6_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
"product_id": "6Server-6.2.AUS:dnsmasq-0:2.48-5.el6_2.2.x86_64"
},
"product_reference": "dnsmasq-0:2.48-5.el6_2.2.x86_64",
"relates_to_product_reference": "6Server-6.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-5.el6_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.2)",
"product_id": "6Server-6.2.AUS:dnsmasq-debuginfo-0:2.48-5.el6_2.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-5.el6_2.2.x86_64",
"relates_to_product_reference": "6Server-6.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-13.el6_4.1.src as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.src"
},
"product_reference": "dnsmasq-0:2.48-13.el6_4.1.src",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-13.el6_4.1.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.x86_64"
},
"product_reference": "dnsmasq-0:2.48-13.el6_4.1.x86_64",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-13.el6_4.1.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:dnsmasq-debuginfo-0:2.48-13.el6_4.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-13.el6_4.1.x86_64",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-13.el6_4.1.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.4)",
"product_id": "6Server-6.4.AUS:dnsmasq-utils-0:2.48-13.el6_4.1.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-13.el6_4.1.x86_64",
"relates_to_product_reference": "6Server-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-13.el6_5.1.src as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.src"
},
"product_reference": "dnsmasq-0:2.48-13.el6_5.1.src",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-13.el6_5.1.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.x86_64"
},
"product_reference": "dnsmasq-0:2.48-13.el6_5.1.x86_64",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-13.el6_5.1.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.5)",
"product_id": "6Server-6.5.AUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"relates_to_product_reference": "6Server-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-13.el6_5.1.src as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
"product_id": "6Server-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.src"
},
"product_reference": "dnsmasq-0:2.48-13.el6_5.1.src",
"relates_to_product_reference": "6Server-6.5.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-13.el6_5.1.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
"product_id": "6Server-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.x86_64"
},
"product_reference": "dnsmasq-0:2.48-13.el6_5.1.x86_64",
"relates_to_product_reference": "6Server-6.5.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
"product_id": "6Server-6.5.TUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"relates_to_product_reference": "6Server-6.5.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-13.el6_5.1.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.5)",
"product_id": "6Server-6.5.TUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"relates_to_product_reference": "6Server-6.5.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-14.el6_6.1.src as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
"product_id": "6Server-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.src"
},
"product_reference": "dnsmasq-0:2.48-14.el6_6.1.src",
"relates_to_product_reference": "6Server-6.6.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-14.el6_6.1.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
"product_id": "6Server-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.x86_64"
},
"product_reference": "dnsmasq-0:2.48-14.el6_6.1.x86_64",
"relates_to_product_reference": "6Server-6.6.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
"product_id": "6Server-6.6.AUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"relates_to_product_reference": "6Server-6.6.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-14.el6_6.1.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 6.6)",
"product_id": "6Server-6.6.AUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"relates_to_product_reference": "6Server-6.6.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-14.el6_6.1.src as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
"product_id": "6Server-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.src"
},
"product_reference": "dnsmasq-0:2.48-14.el6_6.1.src",
"relates_to_product_reference": "6Server-6.6.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-14.el6_6.1.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
"product_id": "6Server-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.x86_64"
},
"product_reference": "dnsmasq-0:2.48-14.el6_6.1.x86_64",
"relates_to_product_reference": "6Server-6.6.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
"product_id": "6Server-6.6.TUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"relates_to_product_reference": "6Server-6.6.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-14.el6_6.1.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 6.6)",
"product_id": "6Server-6.6.TUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"relates_to_product_reference": "6Server-6.6.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.i686",
"relates_to_product_reference": "6Server-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.ppc64",
"relates_to_product_reference": "6Server-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.s390x",
"relates_to_product_reference": "6Server-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.src as a component of Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.src",
"relates_to_product_reference": "6Server-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.x86_64",
"relates_to_product_reference": "6Server-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"relates_to_product_reference": "6Server-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"relates_to_product_reference": "6Server-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"relates_to_product_reference": "6Server-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"relates_to_product_reference": "6Server-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.i686 as a component of Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"relates_to_product_reference": "6Server-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"relates_to_product_reference": "6Server-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"relates_to_product_reference": "6Server-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 6.7)",
"product_id": "6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"relates_to_product_reference": "6Server-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-13.el6_4.1.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.src"
},
"product_reference": "dnsmasq-0:2.48-13.el6_4.1.src",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-13.el6_4.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.x86_64"
},
"product_reference": "dnsmasq-0:2.48-13.el6_4.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-13.el6_4.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:dnsmasq-debuginfo-0:2.48-13.el6_4.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-13.el6_4.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-13.el6_4.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.4)",
"product_id": "6Server-optional-6.4.AUS:dnsmasq-utils-0:2.48-13.el6_4.1.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-13.el6_4.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-13.el6_5.1.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.src"
},
"product_reference": "dnsmasq-0:2.48-13.el6_5.1.src",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-13.el6_5.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.x86_64"
},
"product_reference": "dnsmasq-0:2.48-13.el6_5.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-13.el6_5.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.5)",
"product_id": "6Server-optional-6.5.AUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-13.el6_5.1.src as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
"product_id": "6Server-optional-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.src"
},
"product_reference": "dnsmasq-0:2.48-13.el6_5.1.src",
"relates_to_product_reference": "6Server-optional-6.5.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-13.el6_5.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
"product_id": "6Server-optional-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.x86_64"
},
"product_reference": "dnsmasq-0:2.48-13.el6_5.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
"product_id": "6Server-optional-6.5.TUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-13.el6_5.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.5)",
"product_id": "6Server-optional-6.5.TUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.5.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-14.el6_6.1.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
"product_id": "6Server-optional-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.src"
},
"product_reference": "dnsmasq-0:2.48-14.el6_6.1.src",
"relates_to_product_reference": "6Server-optional-6.6.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-14.el6_6.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
"product_id": "6Server-optional-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.x86_64"
},
"product_reference": "dnsmasq-0:2.48-14.el6_6.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.6.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
"product_id": "6Server-optional-6.6.AUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.6.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-14.el6_6.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 6.6)",
"product_id": "6Server-optional-6.6.AUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.6.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-14.el6_6.1.src as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
"product_id": "6Server-optional-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.src"
},
"product_reference": "dnsmasq-0:2.48-14.el6_6.1.src",
"relates_to_product_reference": "6Server-optional-6.6.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-14.el6_6.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
"product_id": "6Server-optional-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.x86_64"
},
"product_reference": "dnsmasq-0:2.48-14.el6_6.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.6.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
"product_id": "6Server-optional-6.6.TUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.6.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-14.el6_6.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 6.6)",
"product_id": "6Server-optional-6.6.TUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.6.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.i686 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.7)",
"product_id": "6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.i686",
"relates_to_product_reference": "6Server-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.7)",
"product_id": "6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.ppc64",
"relates_to_product_reference": "6Server-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.7)",
"product_id": "6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.s390x",
"relates_to_product_reference": "6Server-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.7)",
"product_id": "6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.src",
"relates_to_product_reference": "6Server-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-16.el6_7.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.7)",
"product_id": "6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64"
},
"product_reference": "dnsmasq-0:2.48-16.el6_7.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.7)",
"product_id": "6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"relates_to_product_reference": "6Server-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.7)",
"product_id": "6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"relates_to_product_reference": "6Server-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.7)",
"product_id": "6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"relates_to_product_reference": "6Server-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.7)",
"product_id": "6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.i686 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.7)",
"product_id": "6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"relates_to_product_reference": "6Server-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.7)",
"product_id": "6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"relates_to_product_reference": "6Server-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.7)",
"product_id": "6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"relates_to_product_reference": "6Server-optional-6.7.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-16.el6_7.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 6.7)",
"product_id": "6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"relates_to_product_reference": "6Server-optional-6.7.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Felix Wilhelm",
"Fermin J. Serna",
"Gabriel Campana",
"Kevin Hamacher",
"Ron Bowes"
],
"organization": "Google Security Team"
}
],
"cve": "CVE-2017-14491",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-09-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495409"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dnsmasq: heap overflow in the code responsible for building DNS replies",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform includes the dnsmasq-utils RPM which does not contain this flaw\u0027s affected code-paths; Red Hat OpenStack Platform is therefore listed as not affected.\n\nHowever, because all versions of Red Hat OpenStack Platform are based on Red Hat Enterprise Linux, all Red Hat OpenStack Platform users should absolutely upgrade the dnsmasq RPM from Red Hat Enterprise Linux as a matter of urgency using standard update mechanisms (such as \u0027yum update\u0027 or \u0027openstack overcloud update\u0027).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686",
"6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src",
"6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64",
"6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686",
"6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src",
"6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"6Server-6.2.AUS:dnsmasq-0:2.48-5.el6_2.2.src",
"6Server-6.2.AUS:dnsmasq-0:2.48-5.el6_2.2.x86_64",
"6Server-6.2.AUS:dnsmasq-debuginfo-0:2.48-5.el6_2.2.x86_64",
"6Server-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.src",
"6Server-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.x86_64",
"6Server-6.4.AUS:dnsmasq-debuginfo-0:2.48-13.el6_4.1.x86_64",
"6Server-6.4.AUS:dnsmasq-utils-0:2.48-13.el6_4.1.x86_64",
"6Server-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.src",
"6Server-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.x86_64",
"6Server-6.5.AUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"6Server-6.5.AUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"6Server-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.src",
"6Server-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.x86_64",
"6Server-6.5.TUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"6Server-6.5.TUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"6Server-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.src",
"6Server-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.x86_64",
"6Server-6.6.AUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"6Server-6.6.AUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"6Server-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.src",
"6Server-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.x86_64",
"6Server-6.6.TUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"6Server-6.6.TUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686",
"6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64",
"6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x",
"6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src",
"6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64",
"6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"6Server-optional-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.src",
"6Server-optional-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.x86_64",
"6Server-optional-6.4.AUS:dnsmasq-debuginfo-0:2.48-13.el6_4.1.x86_64",
"6Server-optional-6.4.AUS:dnsmasq-utils-0:2.48-13.el6_4.1.x86_64",
"6Server-optional-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.src",
"6Server-optional-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.5.AUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.5.AUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.src",
"6Server-optional-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.5.TUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.5.TUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.src",
"6Server-optional-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.6.AUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.6.AUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.src",
"6Server-optional-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.6.TUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.6.TUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686",
"6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64",
"6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x",
"6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src",
"6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64",
"6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14491"
},
{
"category": "external",
"summary": "RHBZ#1495409",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495409"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14491",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14491"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14491",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14491"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
}
],
"release_date": "2017-10-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-10-02T17:07:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686",
"6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src",
"6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64",
"6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686",
"6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src",
"6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"6Server-6.2.AUS:dnsmasq-0:2.48-5.el6_2.2.src",
"6Server-6.2.AUS:dnsmasq-0:2.48-5.el6_2.2.x86_64",
"6Server-6.2.AUS:dnsmasq-debuginfo-0:2.48-5.el6_2.2.x86_64",
"6Server-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.src",
"6Server-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.x86_64",
"6Server-6.4.AUS:dnsmasq-debuginfo-0:2.48-13.el6_4.1.x86_64",
"6Server-6.4.AUS:dnsmasq-utils-0:2.48-13.el6_4.1.x86_64",
"6Server-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.src",
"6Server-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.x86_64",
"6Server-6.5.AUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"6Server-6.5.AUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"6Server-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.src",
"6Server-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.x86_64",
"6Server-6.5.TUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"6Server-6.5.TUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"6Server-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.src",
"6Server-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.x86_64",
"6Server-6.6.AUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"6Server-6.6.AUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"6Server-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.src",
"6Server-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.x86_64",
"6Server-6.6.TUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"6Server-6.6.TUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686",
"6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64",
"6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x",
"6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src",
"6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64",
"6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"6Server-optional-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.src",
"6Server-optional-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.x86_64",
"6Server-optional-6.4.AUS:dnsmasq-debuginfo-0:2.48-13.el6_4.1.x86_64",
"6Server-optional-6.4.AUS:dnsmasq-utils-0:2.48-13.el6_4.1.x86_64",
"6Server-optional-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.src",
"6Server-optional-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.5.AUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.5.AUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.src",
"6Server-optional-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.5.TUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.5.TUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.src",
"6Server-optional-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.6.AUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.6.AUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.src",
"6Server-optional-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.6.TUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.6.TUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686",
"6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64",
"6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x",
"6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src",
"6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64",
"6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2839"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686",
"6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src",
"6ComputeNode-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64",
"6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686",
"6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src",
"6ComputeNode-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"6ComputeNode-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"6Server-6.2.AUS:dnsmasq-0:2.48-5.el6_2.2.src",
"6Server-6.2.AUS:dnsmasq-0:2.48-5.el6_2.2.x86_64",
"6Server-6.2.AUS:dnsmasq-debuginfo-0:2.48-5.el6_2.2.x86_64",
"6Server-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.src",
"6Server-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.x86_64",
"6Server-6.4.AUS:dnsmasq-debuginfo-0:2.48-13.el6_4.1.x86_64",
"6Server-6.4.AUS:dnsmasq-utils-0:2.48-13.el6_4.1.x86_64",
"6Server-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.src",
"6Server-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.x86_64",
"6Server-6.5.AUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"6Server-6.5.AUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"6Server-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.src",
"6Server-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.x86_64",
"6Server-6.5.TUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"6Server-6.5.TUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"6Server-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.src",
"6Server-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.x86_64",
"6Server-6.6.AUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"6Server-6.6.AUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"6Server-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.src",
"6Server-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.x86_64",
"6Server-6.6.TUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"6Server-6.6.TUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686",
"6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64",
"6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x",
"6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src",
"6Server-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64",
"6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"6Server-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"6Server-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64",
"6Server-optional-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.src",
"6Server-optional-6.4.AUS:dnsmasq-0:2.48-13.el6_4.1.x86_64",
"6Server-optional-6.4.AUS:dnsmasq-debuginfo-0:2.48-13.el6_4.1.x86_64",
"6Server-optional-6.4.AUS:dnsmasq-utils-0:2.48-13.el6_4.1.x86_64",
"6Server-optional-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.src",
"6Server-optional-6.5.AUS:dnsmasq-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.5.AUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.5.AUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.src",
"6Server-optional-6.5.TUS:dnsmasq-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.5.TUS:dnsmasq-debuginfo-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.5.TUS:dnsmasq-utils-0:2.48-13.el6_5.1.x86_64",
"6Server-optional-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.src",
"6Server-optional-6.6.AUS:dnsmasq-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.6.AUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.6.AUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.src",
"6Server-optional-6.6.TUS:dnsmasq-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.6.TUS:dnsmasq-debuginfo-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.6.TUS:dnsmasq-utils-0:2.48-14.el6_6.1.x86_64",
"6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.i686",
"6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.ppc64",
"6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.s390x",
"6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.src",
"6Server-optional-6.7.EUS:dnsmasq-0:2.48-16.el6_7.1.x86_64",
"6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.i686",
"6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.ppc64",
"6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.s390x",
"6Server-optional-6.7.EUS:dnsmasq-debuginfo-0:2.48-16.el6_7.1.x86_64",
"6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.i686",
"6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.ppc64",
"6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.s390x",
"6Server-optional-6.7.EUS:dnsmasq-utils-0:2.48-16.el6_7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "dnsmasq: heap overflow in the code responsible for building DNS replies"
}
]
}
rhsa-2017:2838
Vulnerability from csaf_redhat
Published
2017-10-02 16:23
Modified
2024-11-22 11:34
Summary
Red Hat Security Advisory: dnsmasq security update
Notes
Topic
An update for dnsmasq is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.
Security Fix(es):
* A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. (CVE-2017-14491)
Red Hat would like to thank Felix Wilhelm (Google Security Team), Fermin J. Serna (Google Security Team), Gabriel Campana (Google Security Team), Kevin Hamacher (Google Security Team), and Ron Bowes (Google Security Team) for reporting this issue.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for dnsmasq is now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.\n\nSecurity Fix(es):\n\n* A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. (CVE-2017-14491)\n\nRed Hat would like to thank Felix Wilhelm (Google Security Team), Fermin J. Serna (Google Security Team), Gabriel Campana (Google Security Team), Kevin Hamacher (Google Security Team), and Ron Bowes (Google Security Team) for reporting this issue.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:2838",
"url": "https://access.redhat.com/errata/RHSA-2017:2838"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "1495409",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495409"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_2838.json"
}
],
"title": "Red Hat Security Advisory: dnsmasq security update",
"tracking": {
"current_release_date": "2024-11-22T11:34:15+00:00",
"generator": {
"date": "2024-11-22T11:34:15+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:2838",
"initial_release_date": "2017-10-02T16:23:56+00:00",
"revision_history": [
{
"date": "2017-10-02T16:23:56+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-10-02T16:23:56+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:34:15+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-0:2.48-18.el6_9.x86_64",
"product": {
"name": "dnsmasq-0:2.48-18.el6_9.x86_64",
"product_id": "dnsmasq-0:2.48-18.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-18.el6_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"product": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"product_id": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.48-18.el6_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"product": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"product_id": "dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.48-18.el6_9?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-0:2.48-18.el6_9.src",
"product": {
"name": "dnsmasq-0:2.48-18.el6_9.src",
"product_id": "dnsmasq-0:2.48-18.el6_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-18.el6_9?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-0:2.48-18.el6_9.i686",
"product": {
"name": "dnsmasq-0:2.48-18.el6_9.i686",
"product_id": "dnsmasq-0:2.48-18.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-18.el6_9?arch=i686"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"product": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"product_id": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.48-18.el6_9?arch=i686"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.48-18.el6_9.i686",
"product": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.i686",
"product_id": "dnsmasq-utils-0:2.48-18.el6_9.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.48-18.el6_9?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"product": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"product_id": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.48-18.el6_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.48-18.el6_9.s390x",
"product": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.s390x",
"product_id": "dnsmasq-utils-0:2.48-18.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.48-18.el6_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.48-18.el6_9.s390x",
"product": {
"name": "dnsmasq-0:2.48-18.el6_9.s390x",
"product_id": "dnsmasq-0:2.48-18.el6_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-18.el6_9?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"product": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"product_id": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.48-18.el6_9?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"product": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"product_id": "dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.48-18.el6_9?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.48-18.el6_9.ppc64",
"product": {
"name": "dnsmasq-0:2.48-18.el6_9.ppc64",
"product_id": "dnsmasq-0:2.48-18.el6_9.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.48-18.el6_9?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.src"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.src",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.src",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Client-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.src as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.src"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.src",
"relates_to_product_reference": "6ComputeNode-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.src as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.src",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)",
"product_id": "6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6ComputeNode-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.src as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.src"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.src",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.src",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
"product_id": "6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Server-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.src"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.src",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.src",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.i686",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.s390x",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.48-18.el6_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)",
"product_id": "6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"relates_to_product_reference": "6Workstation-optional-6.9.z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Felix Wilhelm",
"Fermin J. Serna",
"Gabriel Campana",
"Kevin Hamacher",
"Ron Bowes"
],
"organization": "Google Security Team"
}
],
"cve": "CVE-2017-14491",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-09-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495409"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dnsmasq: heap overflow in the code responsible for building DNS replies",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform includes the dnsmasq-utils RPM which does not contain this flaw\u0027s affected code-paths; Red Hat OpenStack Platform is therefore listed as not affected.\n\nHowever, because all versions of Red Hat OpenStack Platform are based on Red Hat Enterprise Linux, all Red Hat OpenStack Platform users should absolutely upgrade the dnsmasq RPM from Red Hat Enterprise Linux as a matter of urgency using standard update mechanisms (such as \u0027yum update\u0027 or \u0027openstack overcloud update\u0027).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14491"
},
{
"category": "external",
"summary": "RHBZ#1495409",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495409"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14491",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14491"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14491",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14491"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
}
],
"release_date": "2017-10-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-10-02T16:23:56+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2838"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Client-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Client-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Client-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Client-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Client-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Client-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6ComputeNode-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6ComputeNode-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6ComputeNode-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6ComputeNode-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6ComputeNode-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6ComputeNode-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Server-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Server-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Server-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Server-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Server-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Server-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Workstation-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Workstation-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Workstation-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64",
"6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.i686",
"6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.ppc64",
"6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.s390x",
"6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.src",
"6Workstation-optional-6.9.z:dnsmasq-0:2.48-18.el6_9.x86_64",
"6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.i686",
"6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.ppc64",
"6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.s390x",
"6Workstation-optional-6.9.z:dnsmasq-debuginfo-0:2.48-18.el6_9.x86_64",
"6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.i686",
"6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.ppc64",
"6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.s390x",
"6Workstation-optional-6.9.z:dnsmasq-utils-0:2.48-18.el6_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "dnsmasq: heap overflow in the code responsible for building DNS replies"
}
]
}
rhsa-2017:2840
Vulnerability from csaf_redhat
Published
2017-10-02 15:20
Modified
2024-11-22 11:34
Summary
Red Hat Security Advisory: dnsmasq security update
Notes
Topic
An update for dnsmasq is now available for Red Hat Enterprise Linux 5 Extended Lifecycle Support.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.
Security Fix(es):
* A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. (CVE-2017-14491)
Red Hat would like to thank Felix Wilhelm (Google Security Team), Fermin J. Serna (Google Security Team), Gabriel Campana (Google Security Team), Kevin Hamacher (Google Security Team), and Ron Bowes (Google Security Team) for reporting this issue.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for dnsmasq is now available for Red Hat Enterprise Linux 5 Extended Lifecycle Support.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.\n\nSecurity Fix(es):\n\n* A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. (CVE-2017-14491)\n\nRed Hat would like to thank Felix Wilhelm (Google Security Team), Fermin J. Serna (Google Security Team), Gabriel Campana (Google Security Team), Kevin Hamacher (Google Security Team), and Ron Bowes (Google Security Team) for reporting this issue.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:2840",
"url": "https://access.redhat.com/errata/RHSA-2017:2840"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "1495409",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495409"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_2840.json"
}
],
"title": "Red Hat Security Advisory: dnsmasq security update",
"tracking": {
"current_release_date": "2024-11-22T11:34:26+00:00",
"generator": {
"date": "2024-11-22T11:34:26+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:2840",
"initial_release_date": "2017-10-02T15:20:16+00:00",
"revision_history": [
{
"date": "2017-10-02T15:20:16+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-10-02T15:20:16+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:34:26+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 5 ELS)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_els:5"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.45-2.el5_11.1.x86_64",
"product": {
"name": "dnsmasq-debuginfo-0:2.45-2.el5_11.1.x86_64",
"product_id": "dnsmasq-debuginfo-0:2.45-2.el5_11.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.45-2.el5_11.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.45-2.el5_11.1.x86_64",
"product": {
"name": "dnsmasq-0:2.45-2.el5_11.1.x86_64",
"product_id": "dnsmasq-0:2.45-2.el5_11.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.45-2.el5_11.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.45-2.el5_11.1.s390x",
"product": {
"name": "dnsmasq-debuginfo-0:2.45-2.el5_11.1.s390x",
"product_id": "dnsmasq-debuginfo-0:2.45-2.el5_11.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.45-2.el5_11.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.45-2.el5_11.1.s390x",
"product": {
"name": "dnsmasq-0:2.45-2.el5_11.1.s390x",
"product_id": "dnsmasq-0:2.45-2.el5_11.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.45-2.el5_11.1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.45-2.el5_11.1.i386",
"product": {
"name": "dnsmasq-debuginfo-0:2.45-2.el5_11.1.i386",
"product_id": "dnsmasq-debuginfo-0:2.45-2.el5_11.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.45-2.el5_11.1?arch=i386"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.45-2.el5_11.1.i386",
"product": {
"name": "dnsmasq-0:2.45-2.el5_11.1.i386",
"product_id": "dnsmasq-0:2.45-2.el5_11.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.45-2.el5_11.1?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-0:2.45-2.el5_11.1.src",
"product": {
"name": "dnsmasq-0:2.45-2.el5_11.1.src",
"product_id": "dnsmasq-0:2.45-2.el5_11.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.45-2.el5_11.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.45-2.el5_11.1.i386 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.i386"
},
"product_reference": "dnsmasq-0:2.45-2.el5_11.1.i386",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.45-2.el5_11.1.s390x as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.s390x"
},
"product_reference": "dnsmasq-0:2.45-2.el5_11.1.s390x",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.45-2.el5_11.1.src as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.src"
},
"product_reference": "dnsmasq-0:2.45-2.el5_11.1.src",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.45-2.el5_11.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.x86_64"
},
"product_reference": "dnsmasq-0:2.45-2.el5_11.1.x86_64",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.45-2.el5_11.1.i386 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:dnsmasq-debuginfo-0:2.45-2.el5_11.1.i386"
},
"product_reference": "dnsmasq-debuginfo-0:2.45-2.el5_11.1.i386",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.45-2.el5_11.1.s390x as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:dnsmasq-debuginfo-0:2.45-2.el5_11.1.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.45-2.el5_11.1.s390x",
"relates_to_product_reference": "5Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.45-2.el5_11.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 5 ELS)",
"product_id": "5Server-ELS:dnsmasq-debuginfo-0:2.45-2.el5_11.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.45-2.el5_11.1.x86_64",
"relates_to_product_reference": "5Server-ELS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Felix Wilhelm",
"Fermin J. Serna",
"Gabriel Campana",
"Kevin Hamacher",
"Ron Bowes"
],
"organization": "Google Security Team"
}
],
"cve": "CVE-2017-14491",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-09-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495409"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dnsmasq: heap overflow in the code responsible for building DNS replies",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform includes the dnsmasq-utils RPM which does not contain this flaw\u0027s affected code-paths; Red Hat OpenStack Platform is therefore listed as not affected.\n\nHowever, because all versions of Red Hat OpenStack Platform are based on Red Hat Enterprise Linux, all Red Hat OpenStack Platform users should absolutely upgrade the dnsmasq RPM from Red Hat Enterprise Linux as a matter of urgency using standard update mechanisms (such as \u0027yum update\u0027 or \u0027openstack overcloud update\u0027).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.i386",
"5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.s390x",
"5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.src",
"5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.x86_64",
"5Server-ELS:dnsmasq-debuginfo-0:2.45-2.el5_11.1.i386",
"5Server-ELS:dnsmasq-debuginfo-0:2.45-2.el5_11.1.s390x",
"5Server-ELS:dnsmasq-debuginfo-0:2.45-2.el5_11.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14491"
},
{
"category": "external",
"summary": "RHBZ#1495409",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495409"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14491",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14491"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14491",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14491"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
}
],
"release_date": "2017-10-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-10-02T15:20:16+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.i386",
"5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.s390x",
"5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.src",
"5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.x86_64",
"5Server-ELS:dnsmasq-debuginfo-0:2.45-2.el5_11.1.i386",
"5Server-ELS:dnsmasq-debuginfo-0:2.45-2.el5_11.1.s390x",
"5Server-ELS:dnsmasq-debuginfo-0:2.45-2.el5_11.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2840"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.i386",
"5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.s390x",
"5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.src",
"5Server-ELS:dnsmasq-0:2.45-2.el5_11.1.x86_64",
"5Server-ELS:dnsmasq-debuginfo-0:2.45-2.el5_11.1.i386",
"5Server-ELS:dnsmasq-debuginfo-0:2.45-2.el5_11.1.s390x",
"5Server-ELS:dnsmasq-debuginfo-0:2.45-2.el5_11.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "dnsmasq: heap overflow in the code responsible for building DNS replies"
}
]
}
rhsa-2017:2837
Vulnerability from csaf_redhat
Published
2017-10-02 16:19
Modified
2024-11-22 11:34
Summary
Red Hat Security Advisory: dnsmasq security update
Notes
Topic
An update for dnsmasq is now available for Red Hat Enterprise Linux 7.2 Extended Update Support and Red Hat Enterprise Linux 7.3 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.
Security Fix(es):
* A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. (CVE-2017-14491)
* A heap buffer overflow was discovered in dnsmasq in the IPv6 router advertisement (RA) handling code. An attacker on the local network segment could send crafted RAs to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. This issue only affected configurations using one of these options: enable-ra, ra-only, slaac, ra-names, ra-advrouter, or ra-stateless. (CVE-2017-14492)
* A stack buffer overflow was found in dnsmasq in the DHCPv6 code. An attacker on the local network could send a crafted DHCPv6 request to dnsmasq which would cause it to a crash or, potentially, execute arbitrary code. (CVE-2017-14493)
* An information leak was found in dnsmasq in the DHCPv6 relay code. An attacker on the local network could send crafted DHCPv6 packets to dnsmasq causing it to forward the contents of process memory, potentially leaking sensitive data. (CVE-2017-14494)
Red Hat would like to thank Felix Wilhelm (Google Security Team), Fermin J. Serna (Google Security Team), Gabriel Campana (Google Security Team), Kevin Hamacher (Google Security Team), and Ron Bowes (Google Security Team) for reporting these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for dnsmasq is now available for Red Hat Enterprise Linux 7.2 Extended Update Support and Red Hat Enterprise Linux 7.3 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.\n\nSecurity Fix(es):\n\n* A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. (CVE-2017-14491)\n\n* A heap buffer overflow was discovered in dnsmasq in the IPv6 router advertisement (RA) handling code. An attacker on the local network segment could send crafted RAs to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. This issue only affected configurations using one of these options: enable-ra, ra-only, slaac, ra-names, ra-advrouter, or ra-stateless. (CVE-2017-14492)\n\n* A stack buffer overflow was found in dnsmasq in the DHCPv6 code. An attacker on the local network could send a crafted DHCPv6 request to dnsmasq which would cause it to a crash or, potentially, execute arbitrary code. (CVE-2017-14493)\n\n* An information leak was found in dnsmasq in the DHCPv6 relay code. An attacker on the local network could send crafted DHCPv6 packets to dnsmasq causing it to forward the contents of process memory, potentially leaking sensitive data. (CVE-2017-14494)\n\nRed Hat would like to thank Felix Wilhelm (Google Security Team), Fermin J. Serna (Google Security Team), Gabriel Campana (Google Security Team), Kevin Hamacher (Google Security Team), and Ron Bowes (Google Security Team) for reporting these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:2837",
"url": "https://access.redhat.com/errata/RHSA-2017:2837"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "1495409",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495409"
},
{
"category": "external",
"summary": "1495410",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495410"
},
{
"category": "external",
"summary": "1495411",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495411"
},
{
"category": "external",
"summary": "1495412",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495412"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_2837.json"
}
],
"title": "Red Hat Security Advisory: dnsmasq security update",
"tracking": {
"current_release_date": "2024-11-22T11:34:10+00:00",
"generator": {
"date": "2024-11-22T11:34:10+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:2837",
"initial_release_date": "2017-10-02T16:19:55+00:00",
"revision_history": [
{
"date": "2017-10-02T16:19:55+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-10-02T16:19:55+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:34:10+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.2)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.2)",
"product_id": "7ComputeNode-7.2.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.2::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.2)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.2)",
"product_id": "7ComputeNode-optional-7.2.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.2::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS (v. 7.2)",
"product": {
"name": "Red Hat Enterprise Linux Server EUS (v. 7.2)",
"product_id": "7Server-7.2.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.2::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.2)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.2)",
"product_id": "7Server-optional-7.2.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.2::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.3)",
"product_id": "7ComputeNode-7.3.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.3::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.3)",
"product_id": "7ComputeNode-optional-7.3.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.3::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-7.3.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.3::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.3)",
"product_id": "7Server-optional-7.3.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.3::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-0:2.66-14.el7_2.2.x86_64",
"product": {
"name": "dnsmasq-0:2.66-14.el7_2.2.x86_64",
"product_id": "dnsmasq-0:2.66-14.el7_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.66-14.el7_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"product": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"product_id": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.66-14.el7_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"product": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"product_id": "dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.66-14.el7_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"product": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"product_id": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.66-21.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.66-21.el7_3.2.x86_64",
"product": {
"name": "dnsmasq-0:2.66-21.el7_3.2.x86_64",
"product_id": "dnsmasq-0:2.66-21.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.66-21.el7_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"product": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"product_id": "dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.66-21.el7_3.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-0:2.66-14.el7_2.2.src",
"product": {
"name": "dnsmasq-0:2.66-14.el7_2.2.src",
"product_id": "dnsmasq-0:2.66-14.el7_2.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.66-14.el7_2.2?arch=src"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.66-21.el7_3.2.src",
"product": {
"name": "dnsmasq-0:2.66-21.el7_3.2.src",
"product_id": "dnsmasq-0:2.66-21.el7_3.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.66-21.el7_3.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"product": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"product_id": "dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.66-14.el7_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"product": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"product_id": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.66-14.el7_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.66-14.el7_2.2.s390x",
"product": {
"name": "dnsmasq-0:2.66-14.el7_2.2.s390x",
"product_id": "dnsmasq-0:2.66-14.el7_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.66-14.el7_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"product": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"product_id": "dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.66-21.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"product": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"product_id": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.66-21.el7_3.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.66-21.el7_3.2.s390x",
"product": {
"name": "dnsmasq-0:2.66-21.el7_3.2.s390x",
"product_id": "dnsmasq-0:2.66-21.el7_3.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.66-21.el7_3.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"product": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"product_id": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.66-14.el7_2.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"product": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"product_id": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.66-14.el7_2.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.66-14.el7_2.2.ppc64",
"product": {
"name": "dnsmasq-0:2.66-14.el7_2.2.ppc64",
"product_id": "dnsmasq-0:2.66-14.el7_2.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.66-14.el7_2.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"product": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"product_id": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.66-21.el7_3.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"product": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"product_id": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.66-21.el7_3.2?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.66-21.el7_3.2.ppc64",
"product": {
"name": "dnsmasq-0:2.66-21.el7_3.2.ppc64",
"product_id": "dnsmasq-0:2.66-21.el7_3.2.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.66-21.el7_3.2?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"product": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"product_id": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.66-14.el7_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"product": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"product_id": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.66-14.el7_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"product": {
"name": "dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"product_id": "dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.66-14.el7_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"product": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"product_id": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-utils@2.66-21.el7_3.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"product": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"product_id": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.66-21.el7_3.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"product": {
"name": "dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"product_id": "dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.66-21.el7_3.2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.2)",
"product_id": "7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.ppc64",
"relates_to_product_reference": "7ComputeNode-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.2)",
"product_id": "7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.s390x as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.2)",
"product_id": "7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.s390x",
"relates_to_product_reference": "7ComputeNode-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.2)",
"product_id": "7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.src",
"relates_to_product_reference": "7ComputeNode-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.2)",
"product_id": "7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.x86_64",
"relates_to_product_reference": "7ComputeNode-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.2)",
"product_id": "7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"relates_to_product_reference": "7ComputeNode-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.2)",
"product_id": "7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.2)",
"product_id": "7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"relates_to_product_reference": "7ComputeNode-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.2)",
"product_id": "7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"relates_to_product_reference": "7ComputeNode-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.2)",
"product_id": "7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"relates_to_product_reference": "7ComputeNode-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.2)",
"product_id": "7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.s390x as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.2)",
"product_id": "7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"relates_to_product_reference": "7ComputeNode-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.2)",
"product_id": "7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"relates_to_product_reference": "7ComputeNode-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.3)",
"product_id": "7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.ppc64",
"relates_to_product_reference": "7ComputeNode-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.3)",
"product_id": "7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.s390x as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.3)",
"product_id": "7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.s390x",
"relates_to_product_reference": "7ComputeNode-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.3)",
"product_id": "7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.src",
"relates_to_product_reference": "7ComputeNode-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.3)",
"product_id": "7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.x86_64",
"relates_to_product_reference": "7ComputeNode-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.3)",
"product_id": "7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"relates_to_product_reference": "7ComputeNode-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.3)",
"product_id": "7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.3)",
"product_id": "7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"relates_to_product_reference": "7ComputeNode-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.3)",
"product_id": "7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"relates_to_product_reference": "7ComputeNode-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.3)",
"product_id": "7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"relates_to_product_reference": "7ComputeNode-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.3)",
"product_id": "7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.s390x as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.3)",
"product_id": "7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"relates_to_product_reference": "7ComputeNode-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.3)",
"product_id": "7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"relates_to_product_reference": "7ComputeNode-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.2)",
"product_id": "7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.2)",
"product_id": "7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.2)",
"product_id": "7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.2)",
"product_id": "7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.src",
"relates_to_product_reference": "7ComputeNode-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.2)",
"product_id": "7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.2)",
"product_id": "7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.2)",
"product_id": "7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.2)",
"product_id": "7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.2)",
"product_id": "7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.2)",
"product_id": "7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.2)",
"product_id": "7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.2)",
"product_id": "7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.2)",
"product_id": "7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.3)",
"product_id": "7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.3)",
"product_id": "7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.3)",
"product_id": "7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.3)",
"product_id": "7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.src",
"relates_to_product_reference": "7ComputeNode-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.3)",
"product_id": "7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.3)",
"product_id": "7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.3)",
"product_id": "7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.3)",
"product_id": "7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.3)",
"product_id": "7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.3)",
"product_id": "7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.3)",
"product_id": "7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.3)",
"product_id": "7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.3)",
"product_id": "7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.2)",
"product_id": "7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.ppc64",
"relates_to_product_reference": "7Server-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.2)",
"product_id": "7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"relates_to_product_reference": "7Server-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 7.2)",
"product_id": "7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.s390x",
"relates_to_product_reference": "7Server-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.2)",
"product_id": "7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.src",
"relates_to_product_reference": "7Server-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.2)",
"product_id": "7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.2)",
"product_id": "7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"relates_to_product_reference": "7Server-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.2)",
"product_id": "7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"relates_to_product_reference": "7Server-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 7.2)",
"product_id": "7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"relates_to_product_reference": "7Server-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.2)",
"product_id": "7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.2)",
"product_id": "7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"relates_to_product_reference": "7Server-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.2)",
"product_id": "7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"relates_to_product_reference": "7Server-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 7.2)",
"product_id": "7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"relates_to_product_reference": "7Server-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.2)",
"product_id": "7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.ppc64",
"relates_to_product_reference": "7Server-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"relates_to_product_reference": "7Server-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.s390x",
"relates_to_product_reference": "7Server-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.src",
"relates_to_product_reference": "7Server-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"relates_to_product_reference": "7Server-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"relates_to_product_reference": "7Server-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"relates_to_product_reference": "7Server-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"relates_to_product_reference": "7Server-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"relates_to_product_reference": "7Server-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"relates_to_product_reference": "7Server-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.3)",
"product_id": "7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.2)",
"product_id": "7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.ppc64",
"relates_to_product_reference": "7Server-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.2)",
"product_id": "7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.2)",
"product_id": "7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.s390x",
"relates_to_product_reference": "7Server-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.2)",
"product_id": "7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.src",
"relates_to_product_reference": "7Server-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-14.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.2)",
"product_id": "7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64"
},
"product_reference": "dnsmasq-0:2.66-14.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.2)",
"product_id": "7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"relates_to_product_reference": "7Server-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.2)",
"product_id": "7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.2)",
"product_id": "7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"relates_to_product_reference": "7Server-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.2)",
"product_id": "7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.2)",
"product_id": "7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"relates_to_product_reference": "7Server-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.2)",
"product_id": "7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.2)",
"product_id": "7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"relates_to_product_reference": "7Server-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-14.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.2)",
"product_id": "7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.3)",
"product_id": "7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.ppc64",
"relates_to_product_reference": "7Server-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.3)",
"product_id": "7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.3)",
"product_id": "7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.s390x",
"relates_to_product_reference": "7Server-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.3)",
"product_id": "7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.src",
"relates_to_product_reference": "7Server-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.66-21.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.3)",
"product_id": "7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64"
},
"product_reference": "dnsmasq-0:2.66-21.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.3)",
"product_id": "7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"relates_to_product_reference": "7Server-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.3)",
"product_id": "7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.3)",
"product_id": "7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"relates_to_product_reference": "7Server-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.3)",
"product_id": "7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.3)",
"product_id": "7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"relates_to_product_reference": "7Server-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.3)",
"product_id": "7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.3)",
"product_id": "7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"relates_to_product_reference": "7Server-optional-7.3.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-0:2.66-21.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.3)",
"product_id": "7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
},
"product_reference": "dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Felix Wilhelm",
"Fermin J. Serna",
"Gabriel Campana",
"Kevin Hamacher",
"Ron Bowes"
],
"organization": "Google Security Team"
}
],
"cve": "CVE-2017-14491",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-09-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495409"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dnsmasq: heap overflow in the code responsible for building DNS replies",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform includes the dnsmasq-utils RPM which does not contain this flaw\u0027s affected code-paths; Red Hat OpenStack Platform is therefore listed as not affected.\n\nHowever, because all versions of Red Hat OpenStack Platform are based on Red Hat Enterprise Linux, all Red Hat OpenStack Platform users should absolutely upgrade the dnsmasq RPM from Red Hat Enterprise Linux as a matter of urgency using standard update mechanisms (such as \u0027yum update\u0027 or \u0027openstack overcloud update\u0027).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14491"
},
{
"category": "external",
"summary": "RHBZ#1495409",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495409"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14491",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14491"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14491",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14491"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
}
],
"release_date": "2017-10-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-10-02T16:19:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2837"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "dnsmasq: heap overflow in the code responsible for building DNS replies"
},
{
"acknowledgments": [
{
"names": [
"Felix Wilhelm",
"Fermin J. Serna",
"Gabriel Campana",
"Kevin Hamacher",
"Ron Bowes"
],
"organization": "Google Security Team"
}
],
"cve": "CVE-2017-14492",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-09-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495410"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow was discovered in dnsmasq in the IPv6 router advertisement (RA) handling code. An attacker on the local network segment could send crafted RAs to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. This issue only affected configurations using one of these options: enable-ra, ra-only, slaac, ra-names, ra-advrouter, or ra-stateless.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dnsmasq: heap overflow in the IPv6 router advertisement code",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform includes the dnsmasq-utils RPM which does not contain this flaw\u0027s affected code-paths; Red Hat OpenStack Platform is therefore listed as not affected.\n\nHowever, because all versions of Red Hat OpenStack Platform are based on Red Hat Enterprise Linux, all Red Hat OpenStack Platform users should absolutely upgrade the dnsmasq RPM from Red Hat Enterprise Linux as a matter of urgency using standard update mechanisms (such as \u0027yum update\u0027 or \u0027openstack overcloud update\u0027).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14492"
},
{
"category": "external",
"summary": "RHBZ#1495410",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495410"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14492",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14492"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14492",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14492"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
}
],
"release_date": "2017-10-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-10-02T16:19:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2837"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 8.3,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "dnsmasq: heap overflow in the IPv6 router advertisement code"
},
{
"acknowledgments": [
{
"names": [
"Felix Wilhelm",
"Fermin J. Serna",
"Gabriel Campana",
"Kevin Hamacher",
"Ron Bowes"
],
"organization": "Google Security Team"
}
],
"cve": "CVE-2017-14493",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2017-09-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495411"
}
],
"notes": [
{
"category": "description",
"text": "A stack buffer overflow was found in dnsmasq in the DHCPv6 code. An attacker on the local network could send a crafted DHCPv6 request to dnsmasq which would cause it to a crash or, potentially, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dnsmasq: stack buffer overflow in the DHCPv6 code",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform includes the dnsmasq-utils RPM which does not contain this flaw\u0027s affected code-paths; Red Hat OpenStack Platform is therefore listed as not affected.\n\nHowever, because all versions of Red Hat OpenStack Platform are based on Red Hat Enterprise Linux, all Red Hat OpenStack Platform users should absolutely upgrade the dnsmasq RPM from Red Hat Enterprise Linux as a matter of urgency using standard update mechanisms (such as \u0027yum update\u0027 or \u0027openstack overcloud update\u0027).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14493"
},
{
"category": "external",
"summary": "RHBZ#1495411",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495411"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14493",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14493"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14493",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14493"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
}
],
"release_date": "2017-10-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-10-02T16:19:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2837"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 8.3,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:A/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "dnsmasq: stack buffer overflow in the DHCPv6 code"
},
{
"acknowledgments": [
{
"names": [
"Felix Wilhelm",
"Fermin J. Serna",
"Gabriel Campana",
"Kevin Hamacher",
"Ron Bowes"
],
"organization": "Google Security Team"
}
],
"cve": "CVE-2017-14494",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2017-09-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495412"
}
],
"notes": [
{
"category": "description",
"text": "An information leak was found in dnsmasq in the DHCPv6 relay code. An attacker on the local network could send crafted DHCPv6 packets to dnsmasq causing it to forward the contents of process memory, potentially leaking sensitive data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dnsmasq: information leak in the DHCPv6 relay code",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform includes the dnsmasq-utils RPM which does not contain this flaw\u0027s affected code-paths; Red Hat OpenStack Platform is therefore listed as not affected.\n\nHowever, because all versions of Red Hat OpenStack Platform are based on Red Hat Enterprise Linux, all Red Hat OpenStack Platform users should absolutely upgrade the dnsmasq RPM from Red Hat Enterprise Linux as a matter of urgency using standard update mechanisms (such as \u0027yum update\u0027 or \u0027openstack overcloud update\u0027).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14494"
},
{
"category": "external",
"summary": "RHBZ#1495412",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495412"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14494",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14494"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14494",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14494"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
}
],
"release_date": "2017-10-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-10-02T16:19:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2837"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 7.8,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7ComputeNode-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7ComputeNode-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7ComputeNode-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7ComputeNode-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.src",
"7Server-optional-7.2.EUS:dnsmasq-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-debuginfo-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.ppc64le",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.s390x",
"7Server-optional-7.2.EUS:dnsmasq-utils-0:2.66-14.el7_2.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.src",
"7Server-optional-7.3.EUS:dnsmasq-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-debuginfo-0:2.66-21.el7_3.2.x86_64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.ppc64le",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.s390x",
"7Server-optional-7.3.EUS:dnsmasq-utils-0:2.66-21.el7_3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dnsmasq: information leak in the DHCPv6 relay code"
}
]
}
rhsa-2017:2841
Vulnerability from csaf_redhat
Published
2017-10-02 15:53
Modified
2024-11-22 11:34
Summary
Red Hat Security Advisory: dnsmasq security update
Notes
Topic
An update for dnsmasq is now available for Red Hat Enterprise Linux 5.9 Long Life.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.
Security Fix(es):
* A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. (CVE-2017-14491)
Red Hat would like to thank Felix Wilhelm (Google Security Team), Fermin J. Serna (Google Security Team), Gabriel Campana (Google Security Team), Kevin Hamacher (Google Security Team), and Ron Bowes (Google Security Team) for reporting this issue.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for dnsmasq is now available for Red Hat Enterprise Linux 5.9 Long Life.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.\n\nSecurity Fix(es):\n\n* A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. (CVE-2017-14491)\n\nRed Hat would like to thank Felix Wilhelm (Google Security Team), Fermin J. Serna (Google Security Team), Gabriel Campana (Google Security Team), Kevin Hamacher (Google Security Team), and Ron Bowes (Google Security Team) for reporting this issue.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:2841",
"url": "https://access.redhat.com/errata/RHSA-2017:2841"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "1495409",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495409"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_2841.json"
}
],
"title": "Red Hat Security Advisory: dnsmasq security update",
"tracking": {
"current_release_date": "2024-11-22T11:34:31+00:00",
"generator": {
"date": "2024-11-22T11:34:31+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:2841",
"initial_release_date": "2017-10-02T15:53:55+00:00",
"revision_history": [
{
"date": "2017-10-02T15:53:55+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-10-02T15:53:55+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:34:31+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product": {
"name": "Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:5.9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.45-2.el5_9.1.x86_64",
"product": {
"name": "dnsmasq-debuginfo-0:2.45-2.el5_9.1.x86_64",
"product_id": "dnsmasq-debuginfo-0:2.45-2.el5_9.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.45-2.el5_9.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.45-2.el5_9.1.x86_64",
"product": {
"name": "dnsmasq-0:2.45-2.el5_9.1.x86_64",
"product_id": "dnsmasq-0:2.45-2.el5_9.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.45-2.el5_9.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-debuginfo-0:2.45-2.el5_9.1.i386",
"product": {
"name": "dnsmasq-debuginfo-0:2.45-2.el5_9.1.i386",
"product_id": "dnsmasq-debuginfo-0:2.45-2.el5_9.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.45-2.el5_9.1?arch=i386"
}
}
},
{
"category": "product_version",
"name": "dnsmasq-0:2.45-2.el5_9.1.i386",
"product": {
"name": "dnsmasq-0:2.45-2.el5_9.1.i386",
"product_id": "dnsmasq-0:2.45-2.el5_9.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.45-2.el5_9.1?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-0:2.45-2.el5_9.1.src",
"product": {
"name": "dnsmasq-0:2.45-2.el5_9.1.src",
"product_id": "dnsmasq-0:2.45-2.el5_9.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dnsmasq@2.45-2.el5_9.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.45-2.el5_9.1.i386 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:dnsmasq-0:2.45-2.el5_9.1.i386"
},
"product_reference": "dnsmasq-0:2.45-2.el5_9.1.i386",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.45-2.el5_9.1.src as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:dnsmasq-0:2.45-2.el5_9.1.src"
},
"product_reference": "dnsmasq-0:2.45-2.el5_9.1.src",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-0:2.45-2.el5_9.1.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:dnsmasq-0:2.45-2.el5_9.1.x86_64"
},
"product_reference": "dnsmasq-0:2.45-2.el5_9.1.x86_64",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.45-2.el5_9.1.i386 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:dnsmasq-debuginfo-0:2.45-2.el5_9.1.i386"
},
"product_reference": "dnsmasq-debuginfo-0:2.45-2.el5_9.1.i386",
"relates_to_product_reference": "5Server-5.9.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-debuginfo-0:2.45-2.el5_9.1.x86_64 as a component of Red Hat Enterprise Linux Long Life (v. 5.9 server)",
"product_id": "5Server-5.9.AUS:dnsmasq-debuginfo-0:2.45-2.el5_9.1.x86_64"
},
"product_reference": "dnsmasq-debuginfo-0:2.45-2.el5_9.1.x86_64",
"relates_to_product_reference": "5Server-5.9.AUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Felix Wilhelm",
"Fermin J. Serna",
"Gabriel Campana",
"Kevin Hamacher",
"Ron Bowes"
],
"organization": "Google Security Team"
}
],
"cve": "CVE-2017-14491",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2017-09-25T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1495409"
}
],
"notes": [
{
"category": "description",
"text": "A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dnsmasq: heap overflow in the code responsible for building DNS replies",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat OpenStack Platform includes the dnsmasq-utils RPM which does not contain this flaw\u0027s affected code-paths; Red Hat OpenStack Platform is therefore listed as not affected.\n\nHowever, because all versions of Red Hat OpenStack Platform are based on Red Hat Enterprise Linux, all Red Hat OpenStack Platform users should absolutely upgrade the dnsmasq RPM from Red Hat Enterprise Linux as a matter of urgency using standard update mechanisms (such as \u0027yum update\u0027 or \u0027openstack overcloud update\u0027).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-5.9.AUS:dnsmasq-0:2.45-2.el5_9.1.i386",
"5Server-5.9.AUS:dnsmasq-0:2.45-2.el5_9.1.src",
"5Server-5.9.AUS:dnsmasq-0:2.45-2.el5_9.1.x86_64",
"5Server-5.9.AUS:dnsmasq-debuginfo-0:2.45-2.el5_9.1.i386",
"5Server-5.9.AUS:dnsmasq-debuginfo-0:2.45-2.el5_9.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14491"
},
{
"category": "external",
"summary": "RHBZ#1495409",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1495409"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14491",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14491"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14491",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14491"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/3199382",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"category": "external",
"summary": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
}
],
"release_date": "2017-10-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-10-02T15:53:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"5Server-5.9.AUS:dnsmasq-0:2.45-2.el5_9.1.i386",
"5Server-5.9.AUS:dnsmasq-0:2.45-2.el5_9.1.src",
"5Server-5.9.AUS:dnsmasq-0:2.45-2.el5_9.1.x86_64",
"5Server-5.9.AUS:dnsmasq-debuginfo-0:2.45-2.el5_9.1.i386",
"5Server-5.9.AUS:dnsmasq-debuginfo-0:2.45-2.el5_9.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2841"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"5Server-5.9.AUS:dnsmasq-0:2.45-2.el5_9.1.i386",
"5Server-5.9.AUS:dnsmasq-0:2.45-2.el5_9.1.src",
"5Server-5.9.AUS:dnsmasq-0:2.45-2.el5_9.1.x86_64",
"5Server-5.9.AUS:dnsmasq-debuginfo-0:2.45-2.el5_9.1.i386",
"5Server-5.9.AUS:dnsmasq-debuginfo-0:2.45-2.el5_9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "dnsmasq: heap overflow in the code responsible for building DNS replies"
}
]
}
suse-su-2017:2616-1
Vulnerability from csaf_suse
Published
2017-10-02 13:53
Modified
2017-10-02 13:53
Summary
Security update for dnsmasq
Notes
Title of the patch
Security update for dnsmasq
Description of the patch
This update for dnsmasq fixes the following issues.
Remedy the following security issues:
- CVE-2017-14491: 2 byte heap based overflow. [bsc#1060354]
- CVE-2017-14492: heap based overflow. [bsc#1060355]
- CVE-2017-14493: stack based overflow. [bsc#1060360]
- CVE-2017-14494: DHCP - info leak. [bsc#1060361]
- CVE-2017-14495: DNS - OOM DoS. [bsc#1060362]
- CVE-2017-14496: DNS - DoS Integer underflow. [bsc#1060364]
- Prevent a man-in-the-middle attack (bsc#972164, fate#321175).
Furthermore, the following issues have been fixed:
- Fix DHCP relaying, broken in 2.76 and 2.77.
- Update to version 2.78 (fate#321175, fate#322030, bsc#1035227).
- Fix PXE booting for UEFI architectures (fate#322030).
- Drop PrivateDevices=yes which breaks logging (bsc#902511, bsc#904537)
- Build with support for DNSSEC (fate#318323, bsc#908137).
Please note that this update brings a (small) potential incompatibility in the
handling of 'basename' in --pxe-service. Please read the CHANGELOG and the
documentation if you are using this option.
Patchnames
SUSE-SLE-SERVER-12-2017-1616
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for dnsmasq",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for dnsmasq fixes the following issues.\n\nRemedy the following security issues:\n\n- CVE-2017-14491: 2 byte heap based overflow. [bsc#1060354]\n- CVE-2017-14492: heap based overflow. [bsc#1060355]\n- CVE-2017-14493: stack based overflow. [bsc#1060360]\n- CVE-2017-14494: DHCP - info leak. [bsc#1060361]\n- CVE-2017-14495: DNS - OOM DoS. [bsc#1060362]\n- CVE-2017-14496: DNS - DoS Integer underflow. [bsc#1060364]\n- Prevent a man-in-the-middle attack (bsc#972164, fate#321175).\n\nFurthermore, the following issues have been fixed:\n\n- Fix DHCP relaying, broken in 2.76 and 2.77.\n- Update to version 2.78 (fate#321175, fate#322030, bsc#1035227).\n- Fix PXE booting for UEFI architectures (fate#322030).\n- Drop PrivateDevices=yes which breaks logging (bsc#902511, bsc#904537)\n- Build with support for DNSSEC (fate#318323, bsc#908137).\n\nPlease note that this update brings a (small) potential incompatibility in the\nhandling of \u0027basename\u0027 in --pxe-service. Please read the CHANGELOG and the\ndocumentation if you are using this option.\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-SERVER-12-2017-1616",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_2616-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2017:2616-1",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172616-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2017:2616-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2017-October/003268.html"
},
{
"category": "self",
"summary": "SUSE Bug 1035227",
"url": "https://bugzilla.suse.com/1035227"
},
{
"category": "self",
"summary": "SUSE Bug 1060354",
"url": "https://bugzilla.suse.com/1060354"
},
{
"category": "self",
"summary": "SUSE Bug 1060355",
"url": "https://bugzilla.suse.com/1060355"
},
{
"category": "self",
"summary": "SUSE Bug 1060360",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "self",
"summary": "SUSE Bug 1060361",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "self",
"summary": "SUSE Bug 1060362",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "self",
"summary": "SUSE Bug 1060364",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "self",
"summary": "SUSE Bug 902511",
"url": "https://bugzilla.suse.com/902511"
},
{
"category": "self",
"summary": "SUSE Bug 904537",
"url": "https://bugzilla.suse.com/904537"
},
{
"category": "self",
"summary": "SUSE Bug 908137",
"url": "https://bugzilla.suse.com/908137"
},
{
"category": "self",
"summary": "SUSE Bug 972164",
"url": "https://bugzilla.suse.com/972164"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3294 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3294/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8899 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14491 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14491/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14492 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14492/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14493 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14493/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14494 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14494/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14495 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14495/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14496 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14496/"
}
],
"title": "Security update for dnsmasq",
"tracking": {
"current_release_date": "2017-10-02T13:53:30Z",
"generator": {
"date": "2017-10-02T13:53:30Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2017:2616-1",
"initial_release_date": "2017-10-02T13:53:30Z",
"revision_history": [
{
"date": "2017-10-02T13:53:30Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.78-6.6.1.ppc64le",
"product": {
"name": "dnsmasq-2.78-6.6.1.ppc64le",
"product_id": "dnsmasq-2.78-6.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.78-6.6.1.s390x",
"product": {
"name": "dnsmasq-2.78-6.6.1.s390x",
"product_id": "dnsmasq-2.78-6.6.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.78-6.6.1.x86_64",
"product": {
"name": "dnsmasq-2.78-6.6.1.x86_64",
"product_id": "dnsmasq-2.78-6.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-6.6.1.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le"
},
"product_reference": "dnsmasq-2.78-6.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-6.6.1.s390x as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x"
},
"product_reference": "dnsmasq-2.78-6.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-6.6.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS",
"product_id": "SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
},
"product_reference": "dnsmasq-2.78-6.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-3294",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3294"
}
],
"notes": [
{
"category": "general",
"text": "The tcp_request function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setup_reply function, which allows remote attackers to read process memory and cause a denial of service (out-of-bounds read and crash) via a malformed DNS request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3294",
"url": "https://www.suse.com/security/cve/CVE-2015-3294"
},
{
"category": "external",
"summary": "SUSE Bug 923144 for CVE-2015-3294",
"url": "https://bugzilla.suse.com/923144"
},
{
"category": "external",
"summary": "SUSE Bug 928867 for CVE-2015-3294",
"url": "https://bugzilla.suse.com/928867"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:30Z",
"details": "moderate"
}
],
"title": "CVE-2015-3294"
},
{
"cve": "CVE-2015-8899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8899"
}
],
"notes": [
{
"category": "general",
"text": "Dnsmasq before 2.76 allows remote servers to cause a denial of service (crash) via a reply with an empty DNS address that has an (1) A or (2) AAAA record defined locally.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8899",
"url": "https://www.suse.com/security/cve/CVE-2015-8899"
},
{
"category": "external",
"summary": "SUSE Bug 983273 for CVE-2015-8899",
"url": "https://bugzilla.suse.com/983273"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:30Z",
"details": "moderate"
}
],
"title": "CVE-2015-8899"
},
{
"cve": "CVE-2017-14491",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14491"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14491",
"url": "https://www.suse.com/security/cve/CVE-2017-14491"
},
{
"category": "external",
"summary": "SUSE Bug 1060354 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060354"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "external",
"summary": "SUSE Bug 1063832 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1063832"
},
{
"category": "external",
"summary": "SUSE Bug 1143944 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1143944"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:30Z",
"details": "moderate"
}
],
"title": "CVE-2017-14491"
},
{
"cve": "CVE-2017-14492",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14492"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted IPv6 router advertisement request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14492",
"url": "https://www.suse.com/security/cve/CVE-2017-14492"
},
{
"category": "external",
"summary": "SUSE Bug 1060355 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060355"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "external",
"summary": "SUSE Bug 1063832 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1063832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:30Z",
"details": "moderate"
}
],
"title": "CVE-2017-14492"
},
{
"cve": "CVE-2017-14493",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14493"
}
],
"notes": [
{
"category": "general",
"text": "Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DHCPv6 request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14493",
"url": "https://www.suse.com/security/cve/CVE-2017-14493"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "external",
"summary": "SUSE Bug 1063832 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1063832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:30Z",
"details": "moderate"
}
],
"title": "CVE-2017-14493"
},
{
"cve": "CVE-2017-14494",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14494"
}
],
"notes": [
{
"category": "general",
"text": "dnsmasq before 2.78, when configured as a relay, allows remote attackers to obtain sensitive memory information via vectors involving handling DHCPv6 forwarded requests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14494",
"url": "https://www.suse.com/security/cve/CVE-2017-14494"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:30Z",
"details": "moderate"
}
],
"title": "CVE-2017-14494"
},
{
"cve": "CVE-2017-14495",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14495"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in dnsmasq before 2.78, when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service (memory consumption) via vectors involving DNS response creation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14495",
"url": "https://www.suse.com/security/cve/CVE-2017-14495"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:30Z",
"details": "important"
}
],
"title": "CVE-2017-14495"
},
{
"cve": "CVE-2017-14496",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14496"
}
],
"notes": [
{
"category": "general",
"text": "Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14496",
"url": "https://www.suse.com/security/cve/CVE-2017-14496"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.ppc64le",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.s390x",
"SUSE Linux Enterprise Server 12-LTSS:dnsmasq-2.78-6.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:30Z",
"details": "important"
}
],
"title": "CVE-2017-14496"
}
]
}
suse-su-2017:2618-1
Vulnerability from csaf_suse
Published
2017-10-02 13:53
Modified
2017-10-02 13:53
Summary
Security update for dnsmasq
Notes
Title of the patch
Security update for dnsmasq
Description of the patch
This update for dnsmasq fixes the following security issues:
- CVE-2017-14491: 2 byte heap based overflow. [bsc#1060354]
- CVE-2017-14492: heap based overflow. [bsc#1060355]
- CVE-2017-14493: stack based overflow. [bsc#1060360]
- CVE-2017-14494: DHCP - info leak. [bsc#1060361]
- CVE-2017-14495: DNS - OOM DoS. [bsc#1060362]
- CVE-2017-14496: DNS - DoS Integer underflow. [bsc#1060364]
Patchnames
SUSE-OpenStack-Cloud-6-2017-1615,SUSE-OpenStack-Cloud-7-2017-1615,SUSE-SLE-DESKTOP-12-SP2-2017-1615,SUSE-SLE-DESKTOP-12-SP3-2017-1615,SUSE-SLE-RPI-12-SP2-2017-1615,SUSE-SLE-SAP-12-SP1-2017-1615,SUSE-SLE-SERVER-12-SP1-2017-1615,SUSE-SLE-SERVER-12-SP2-2017-1615,SUSE-SLE-SERVER-12-SP3-2017-1615
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for dnsmasq",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for dnsmasq fixes the following security issues:\n\n- CVE-2017-14491: 2 byte heap based overflow. [bsc#1060354]\n- CVE-2017-14492: heap based overflow. [bsc#1060355]\n- CVE-2017-14493: stack based overflow. [bsc#1060360]\n- CVE-2017-14494: DHCP - info leak. [bsc#1060361]\n- CVE-2017-14495: DNS - OOM DoS. [bsc#1060362]\n- CVE-2017-14496: DNS - DoS Integer underflow. [bsc#1060364]\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-OpenStack-Cloud-6-2017-1615,SUSE-OpenStack-Cloud-7-2017-1615,SUSE-SLE-DESKTOP-12-SP2-2017-1615,SUSE-SLE-DESKTOP-12-SP3-2017-1615,SUSE-SLE-RPI-12-SP2-2017-1615,SUSE-SLE-SAP-12-SP1-2017-1615,SUSE-SLE-SERVER-12-SP1-2017-1615,SUSE-SLE-SERVER-12-SP2-2017-1615,SUSE-SLE-SERVER-12-SP3-2017-1615",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_2618-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2017:2618-1",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172618-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2017:2618-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2017-October/003270.html"
},
{
"category": "self",
"summary": "SUSE Bug 1060354",
"url": "https://bugzilla.suse.com/1060354"
},
{
"category": "self",
"summary": "SUSE Bug 1060355",
"url": "https://bugzilla.suse.com/1060355"
},
{
"category": "self",
"summary": "SUSE Bug 1060360",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "self",
"summary": "SUSE Bug 1060361",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "self",
"summary": "SUSE Bug 1060362",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "self",
"summary": "SUSE Bug 1060364",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14491 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14491/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14492 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14492/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14493 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14493/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14494 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14494/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14495 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14495/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14496 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14496/"
}
],
"title": "Security update for dnsmasq",
"tracking": {
"current_release_date": "2017-10-02T13:53:24Z",
"generator": {
"date": "2017-10-02T13:53:24Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2017:2618-1",
"initial_release_date": "2017-10-02T13:53:24Z",
"revision_history": [
{
"date": "2017-10-02T13:53:24Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-utils-2.78-18.3.1.aarch64",
"product": {
"name": "dnsmasq-utils-2.78-18.3.1.aarch64",
"product_id": "dnsmasq-utils-2.78-18.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "dnsmasq-2.78-18.3.1.aarch64",
"product": {
"name": "dnsmasq-2.78-18.3.1.aarch64",
"product_id": "dnsmasq-2.78-18.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.78-18.3.1.ppc64le",
"product": {
"name": "dnsmasq-2.78-18.3.1.ppc64le",
"product_id": "dnsmasq-2.78-18.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-utils-2.78-18.3.1.s390x",
"product": {
"name": "dnsmasq-utils-2.78-18.3.1.s390x",
"product_id": "dnsmasq-utils-2.78-18.3.1.s390x"
}
},
{
"category": "product_version",
"name": "dnsmasq-2.78-18.3.1.s390x",
"product": {
"name": "dnsmasq-2.78-18.3.1.s390x",
"product_id": "dnsmasq-2.78-18.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.78-18.3.1.x86_64",
"product": {
"name": "dnsmasq-2.78-18.3.1.x86_64",
"product_id": "dnsmasq-2.78-18.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-2.78-18.3.1.x86_64",
"product": {
"name": "dnsmasq-utils-2.78-18.3.1.x86_64",
"product_id": "dnsmasq-utils-2.78-18.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 6",
"product": {
"name": "SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:6"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 7",
"product": {
"name": "SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Desktop 12 SP2",
"product_id": "SUSE Linux Enterprise Desktop 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.x86_64 as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64"
},
"product_reference": "dnsmasq-2.78-18.3.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-2.78-18.3.1.x86_64 as component of SUSE OpenStack Cloud 6",
"product_id": "SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64"
},
"product_reference": "dnsmasq-utils-2.78-18.3.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-2.78-18.3.1.aarch64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64"
},
"product_reference": "dnsmasq-utils-2.78-18.3.1.aarch64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-2.78-18.3.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x"
},
"product_reference": "dnsmasq-utils-2.78-18.3.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-2.78-18.3.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
},
"product_reference": "dnsmasq-utils-2.78-18.3.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
"product_id": "SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64"
},
"product_reference": "dnsmasq-2.78-18.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3",
"product_id": "SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64"
},
"product_reference": "dnsmasq-2.78-18.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64"
},
"product_reference": "dnsmasq-2.78-18.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le"
},
"product_reference": "dnsmasq-2.78-18.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64"
},
"product_reference": "dnsmasq-2.78-18.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le"
},
"product_reference": "dnsmasq-2.78-18.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x"
},
"product_reference": "dnsmasq-2.78-18.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64"
},
"product_reference": "dnsmasq-2.78-18.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64"
},
"product_reference": "dnsmasq-2.78-18.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le"
},
"product_reference": "dnsmasq-2.78-18.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x"
},
"product_reference": "dnsmasq-2.78-18.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64"
},
"product_reference": "dnsmasq-2.78-18.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64"
},
"product_reference": "dnsmasq-2.78-18.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le"
},
"product_reference": "dnsmasq-2.78-18.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x"
},
"product_reference": "dnsmasq-2.78-18.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64"
},
"product_reference": "dnsmasq-2.78-18.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64"
},
"product_reference": "dnsmasq-2.78-18.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le"
},
"product_reference": "dnsmasq-2.78-18.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.s390x as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x"
},
"product_reference": "dnsmasq-2.78-18.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64"
},
"product_reference": "dnsmasq-2.78-18.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64"
},
"product_reference": "dnsmasq-2.78-18.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le"
},
"product_reference": "dnsmasq-2.78-18.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x"
},
"product_reference": "dnsmasq-2.78-18.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-18.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64"
},
"product_reference": "dnsmasq-2.78-18.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-14491",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14491"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14491",
"url": "https://www.suse.com/security/cve/CVE-2017-14491"
},
{
"category": "external",
"summary": "SUSE Bug 1060354 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060354"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "external",
"summary": "SUSE Bug 1063832 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1063832"
},
{
"category": "external",
"summary": "SUSE Bug 1143944 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1143944"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:24Z",
"details": "moderate"
}
],
"title": "CVE-2017-14491"
},
{
"cve": "CVE-2017-14492",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14492"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted IPv6 router advertisement request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14492",
"url": "https://www.suse.com/security/cve/CVE-2017-14492"
},
{
"category": "external",
"summary": "SUSE Bug 1060355 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060355"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "external",
"summary": "SUSE Bug 1063832 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1063832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:24Z",
"details": "moderate"
}
],
"title": "CVE-2017-14492"
},
{
"cve": "CVE-2017-14493",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14493"
}
],
"notes": [
{
"category": "general",
"text": "Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DHCPv6 request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14493",
"url": "https://www.suse.com/security/cve/CVE-2017-14493"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "external",
"summary": "SUSE Bug 1063832 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1063832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:24Z",
"details": "moderate"
}
],
"title": "CVE-2017-14493"
},
{
"cve": "CVE-2017-14494",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14494"
}
],
"notes": [
{
"category": "general",
"text": "dnsmasq before 2.78, when configured as a relay, allows remote attackers to obtain sensitive memory information via vectors involving handling DHCPv6 forwarded requests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14494",
"url": "https://www.suse.com/security/cve/CVE-2017-14494"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:24Z",
"details": "moderate"
}
],
"title": "CVE-2017-14494"
},
{
"cve": "CVE-2017-14495",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14495"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in dnsmasq before 2.78, when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service (memory consumption) via vectors involving DNS response creation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14495",
"url": "https://www.suse.com/security/cve/CVE-2017-14495"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:24Z",
"details": "important"
}
],
"title": "CVE-2017-14495"
},
{
"cve": "CVE-2017-14496",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14496"
}
],
"notes": [
{
"category": "general",
"text": "Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14496",
"url": "https://www.suse.com/security/cve/CVE-2017-14496"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP1-LTSS:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:dnsmasq-2.78-18.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 6:dnsmasq-utils-2.78-18.3.1.x86_64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.aarch64",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.s390x",
"SUSE OpenStack Cloud 7:dnsmasq-utils-2.78-18.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:24Z",
"details": "important"
}
],
"title": "CVE-2017-14496"
}
]
}
suse-su-2017:2617-1
Vulnerability from csaf_suse
Published
2017-10-02 13:53
Modified
2017-10-02 13:53
Summary
Security update for dnsmasq
Notes
Title of the patch
Security update for dnsmasq
Description of the patch
This update for dnsmasq fixes the following security issues:
- CVE-2017-14491: 2 byte heap based overflow. [bsc#1060354]
- CVE-2017-14492: heap based overflow. [bsc#1060355]
- CVE-2017-14493: stack based overflow. [bsc#1060360]
- CVE-2017-14494: DHCP - info leak. [bsc#1060361]
- CVE-2017-14495: DNS - OOM DoS. [bsc#1060362]
- CVE-2017-14496: DNS - DoS Integer underflow. [bsc#1060364]
This update brings a (small) potential incompatibility in the handling of
'basename' in --pxe-service. Please read the CHANGELOG and the documentation if
you are using this option.
Patchnames
sleposp3-dnsmasq-13296,slessp3-dnsmasq-13296
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for dnsmasq",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for dnsmasq fixes the following security issues:\n\n- CVE-2017-14491: 2 byte heap based overflow. [bsc#1060354]\n- CVE-2017-14492: heap based overflow. [bsc#1060355]\n- CVE-2017-14493: stack based overflow. [bsc#1060360]\n- CVE-2017-14494: DHCP - info leak. [bsc#1060361]\n- CVE-2017-14495: DNS - OOM DoS. [bsc#1060362]\n- CVE-2017-14496: DNS - DoS Integer underflow. [bsc#1060364]\n\nThis update brings a (small) potential incompatibility in the handling of\n\u0027basename\u0027 in --pxe-service. Please read the CHANGELOG and the documentation if\nyou are using this option.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sleposp3-dnsmasq-13296,slessp3-dnsmasq-13296",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_2617-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2017:2617-1",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172617-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2017:2617-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2017-October/003269.html"
},
{
"category": "self",
"summary": "SUSE Bug 1060354",
"url": "https://bugzilla.suse.com/1060354"
},
{
"category": "self",
"summary": "SUSE Bug 1060355",
"url": "https://bugzilla.suse.com/1060355"
},
{
"category": "self",
"summary": "SUSE Bug 1060360",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "self",
"summary": "SUSE Bug 1060361",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "self",
"summary": "SUSE Bug 1060362",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "self",
"summary": "SUSE Bug 1060364",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3294 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3294/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8899 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14491 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14491/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14492 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14492/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14493 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14493/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14494 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14494/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14495 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14495/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14496 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14496/"
}
],
"title": "Security update for dnsmasq",
"tracking": {
"current_release_date": "2017-10-02T13:53:56Z",
"generator": {
"date": "2017-10-02T13:53:56Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2017:2617-1",
"initial_release_date": "2017-10-02T13:53:56Z",
"revision_history": [
{
"date": "2017-10-02T13:53:56Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.78-0.16.5.1.i586",
"product": {
"name": "dnsmasq-2.78-0.16.5.1.i586",
"product_id": "dnsmasq-2.78-0.16.5.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.78-0.16.5.1.s390x",
"product": {
"name": "dnsmasq-2.78-0.16.5.1.s390x",
"product_id": "dnsmasq-2.78-0.16.5.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.78-0.16.5.1.x86_64",
"product": {
"name": "dnsmasq-2.78-0.16.5.1.x86_64",
"product_id": "dnsmasq-2.78-0.16.5.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Point of Sale 11 SP3",
"product": {
"name": "SUSE Linux Enterprise Point of Sale 11 SP3",
"product_id": "SUSE Linux Enterprise Point of Sale 11 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-pos:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles_ltss:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:11:sp3:teradata"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.16.5.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3",
"product_id": "SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586"
},
"product_reference": "dnsmasq-2.78-0.16.5.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Point of Sale 11 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.16.5.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586"
},
"product_reference": "dnsmasq-2.78-0.16.5.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.16.5.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x"
},
"product_reference": "dnsmasq-2.78-0.16.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.16.5.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64"
},
"product_reference": "dnsmasq-2.78-0.16.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.16.5.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586"
},
"product_reference": "dnsmasq-2.78-0.16.5.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.16.5.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x"
},
"product_reference": "dnsmasq-2.78-0.16.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.16.5.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-TERADATA",
"product_id": "SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
},
"product_reference": "dnsmasq-2.78-0.16.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-TERADATA"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-3294",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3294"
}
],
"notes": [
{
"category": "general",
"text": "The tcp_request function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setup_reply function, which allows remote attackers to read process memory and cause a denial of service (out-of-bounds read and crash) via a malformed DNS request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3294",
"url": "https://www.suse.com/security/cve/CVE-2015-3294"
},
{
"category": "external",
"summary": "SUSE Bug 923144 for CVE-2015-3294",
"url": "https://bugzilla.suse.com/923144"
},
{
"category": "external",
"summary": "SUSE Bug 928867 for CVE-2015-3294",
"url": "https://bugzilla.suse.com/928867"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-3294"
},
{
"cve": "CVE-2015-8899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8899"
}
],
"notes": [
{
"category": "general",
"text": "Dnsmasq before 2.76 allows remote servers to cause a denial of service (crash) via a reply with an empty DNS address that has an (1) A or (2) AAAA record defined locally.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8899",
"url": "https://www.suse.com/security/cve/CVE-2015-8899"
},
{
"category": "external",
"summary": "SUSE Bug 983273 for CVE-2015-8899",
"url": "https://bugzilla.suse.com/983273"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:56Z",
"details": "moderate"
}
],
"title": "CVE-2015-8899"
},
{
"cve": "CVE-2017-14491",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14491"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14491",
"url": "https://www.suse.com/security/cve/CVE-2017-14491"
},
{
"category": "external",
"summary": "SUSE Bug 1060354 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060354"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "external",
"summary": "SUSE Bug 1063832 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1063832"
},
{
"category": "external",
"summary": "SUSE Bug 1143944 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1143944"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:56Z",
"details": "moderate"
}
],
"title": "CVE-2017-14491"
},
{
"cve": "CVE-2017-14492",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14492"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted IPv6 router advertisement request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14492",
"url": "https://www.suse.com/security/cve/CVE-2017-14492"
},
{
"category": "external",
"summary": "SUSE Bug 1060355 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060355"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "external",
"summary": "SUSE Bug 1063832 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1063832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:56Z",
"details": "moderate"
}
],
"title": "CVE-2017-14492"
},
{
"cve": "CVE-2017-14493",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14493"
}
],
"notes": [
{
"category": "general",
"text": "Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DHCPv6 request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14493",
"url": "https://www.suse.com/security/cve/CVE-2017-14493"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "external",
"summary": "SUSE Bug 1063832 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1063832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:56Z",
"details": "moderate"
}
],
"title": "CVE-2017-14493"
},
{
"cve": "CVE-2017-14494",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14494"
}
],
"notes": [
{
"category": "general",
"text": "dnsmasq before 2.78, when configured as a relay, allows remote attackers to obtain sensitive memory information via vectors involving handling DHCPv6 forwarded requests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14494",
"url": "https://www.suse.com/security/cve/CVE-2017-14494"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:56Z",
"details": "moderate"
}
],
"title": "CVE-2017-14494"
},
{
"cve": "CVE-2017-14495",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14495"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in dnsmasq before 2.78, when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service (memory consumption) via vectors involving DNS response creation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14495",
"url": "https://www.suse.com/security/cve/CVE-2017-14495"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:56Z",
"details": "important"
}
],
"title": "CVE-2017-14495"
},
{
"cve": "CVE-2017-14496",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14496"
}
],
"notes": [
{
"category": "general",
"text": "Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14496",
"url": "https://www.suse.com/security/cve/CVE-2017-14496"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Point of Sale 11 SP3:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-LTSS:dnsmasq-2.78-0.16.5.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.i586",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-TERADATA:dnsmasq-2.78-0.16.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:53:56Z",
"details": "important"
}
],
"title": "CVE-2017-14496"
}
]
}
suse-su-2017:2619-1
Vulnerability from csaf_suse
Published
2017-10-02 13:51
Modified
2017-10-02 13:51
Summary
Security update for dnsmasq
Notes
Title of the patch
Security update for dnsmasq
Description of the patch
This update for dnsmasq fixes the following security issues:
- CVE-2017-14491: 2 byte heap based overflow. [bsc#1060354]
- CVE-2017-14492: heap based overflow. [bsc#1060355]
- CVE-2017-14493: stack based overflow. [bsc#1060360]
- CVE-2017-14494: DHCP - info leak. [bsc#1060361]
- CVE-2017-14495: DNS - OOM DoS. [bsc#1060362]
- CVE-2017-14496: DNS - DoS Integer underflow. [bsc#1060364]
This update brings a (small) potential incompatibility in the handling of
'basename' in --pxe-service. Please read the CHANGELOG and the documentation if
you are using this option.
Patchnames
slessp4-dnsmasq-13294
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for dnsmasq",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for dnsmasq fixes the following security issues:\n\n- CVE-2017-14491: 2 byte heap based overflow. [bsc#1060354]\n- CVE-2017-14492: heap based overflow. [bsc#1060355]\n- CVE-2017-14493: stack based overflow. [bsc#1060360]\n- CVE-2017-14494: DHCP - info leak. [bsc#1060361]\n- CVE-2017-14495: DNS - OOM DoS. [bsc#1060362]\n- CVE-2017-14496: DNS - DoS Integer underflow. [bsc#1060364]\n\nThis update brings a (small) potential incompatibility in the handling of\n\u0027basename\u0027 in --pxe-service. Please read the CHANGELOG and the documentation if\nyou are using this option.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "slessp4-dnsmasq-13294",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_2619-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2017:2619-1",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172619-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2017:2619-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2017-October/003271.html"
},
{
"category": "self",
"summary": "SUSE Bug 1060354",
"url": "https://bugzilla.suse.com/1060354"
},
{
"category": "self",
"summary": "SUSE Bug 1060355",
"url": "https://bugzilla.suse.com/1060355"
},
{
"category": "self",
"summary": "SUSE Bug 1060360",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "self",
"summary": "SUSE Bug 1060361",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "self",
"summary": "SUSE Bug 1060362",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "self",
"summary": "SUSE Bug 1060364",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3294 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3294/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8899 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14491 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14491/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14492 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14492/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14493 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14493/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14494 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14494/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14495 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14495/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14496 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14496/"
}
],
"title": "Security update for dnsmasq",
"tracking": {
"current_release_date": "2017-10-02T13:51:46Z",
"generator": {
"date": "2017-10-02T13:51:46Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2017:2619-1",
"initial_release_date": "2017-10-02T13:51:46Z",
"revision_history": [
{
"date": "2017-10-02T13:51:46Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.78-0.17.5.1.i586",
"product": {
"name": "dnsmasq-2.78-0.17.5.1.i586",
"product_id": "dnsmasq-2.78-0.17.5.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.78-0.17.5.1.ia64",
"product": {
"name": "dnsmasq-2.78-0.17.5.1.ia64",
"product_id": "dnsmasq-2.78-0.17.5.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.78-0.17.5.1.ppc64",
"product": {
"name": "dnsmasq-2.78-0.17.5.1.ppc64",
"product_id": "dnsmasq-2.78-0.17.5.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.78-0.17.5.1.s390x",
"product": {
"name": "dnsmasq-2.78-0.17.5.1.s390x",
"product_id": "dnsmasq-2.78-0.17.5.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.78-0.17.5.1.x86_64",
"product": {
"name": "dnsmasq-2.78-0.17.5.1.x86_64",
"product_id": "dnsmasq-2.78-0.17.5.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP4",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:11:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.17.5.1.i586 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586"
},
"product_reference": "dnsmasq-2.78-0.17.5.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.17.5.1.ia64 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64"
},
"product_reference": "dnsmasq-2.78-0.17.5.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.17.5.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64"
},
"product_reference": "dnsmasq-2.78-0.17.5.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.17.5.1.s390x as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x"
},
"product_reference": "dnsmasq-2.78-0.17.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.17.5.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
},
"product_reference": "dnsmasq-2.78-0.17.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.17.5.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586"
},
"product_reference": "dnsmasq-2.78-0.17.5.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.17.5.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64"
},
"product_reference": "dnsmasq-2.78-0.17.5.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.17.5.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64"
},
"product_reference": "dnsmasq-2.78-0.17.5.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.17.5.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x"
},
"product_reference": "dnsmasq-2.78-0.17.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.78-0.17.5.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
},
"product_reference": "dnsmasq-2.78-0.17.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-3294",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3294"
}
],
"notes": [
{
"category": "general",
"text": "The tcp_request function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setup_reply function, which allows remote attackers to read process memory and cause a denial of service (out-of-bounds read and crash) via a malformed DNS request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3294",
"url": "https://www.suse.com/security/cve/CVE-2015-3294"
},
{
"category": "external",
"summary": "SUSE Bug 923144 for CVE-2015-3294",
"url": "https://bugzilla.suse.com/923144"
},
{
"category": "external",
"summary": "SUSE Bug 928867 for CVE-2015-3294",
"url": "https://bugzilla.suse.com/928867"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:51:46Z",
"details": "moderate"
}
],
"title": "CVE-2015-3294"
},
{
"cve": "CVE-2015-8899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8899"
}
],
"notes": [
{
"category": "general",
"text": "Dnsmasq before 2.76 allows remote servers to cause a denial of service (crash) via a reply with an empty DNS address that has an (1) A or (2) AAAA record defined locally.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8899",
"url": "https://www.suse.com/security/cve/CVE-2015-8899"
},
{
"category": "external",
"summary": "SUSE Bug 983273 for CVE-2015-8899",
"url": "https://bugzilla.suse.com/983273"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:51:46Z",
"details": "moderate"
}
],
"title": "CVE-2015-8899"
},
{
"cve": "CVE-2017-14491",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14491"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14491",
"url": "https://www.suse.com/security/cve/CVE-2017-14491"
},
{
"category": "external",
"summary": "SUSE Bug 1060354 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060354"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "external",
"summary": "SUSE Bug 1063832 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1063832"
},
{
"category": "external",
"summary": "SUSE Bug 1143944 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1143944"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:51:46Z",
"details": "moderate"
}
],
"title": "CVE-2017-14491"
},
{
"cve": "CVE-2017-14492",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14492"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted IPv6 router advertisement request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14492",
"url": "https://www.suse.com/security/cve/CVE-2017-14492"
},
{
"category": "external",
"summary": "SUSE Bug 1060355 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060355"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "external",
"summary": "SUSE Bug 1063832 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1063832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:51:46Z",
"details": "moderate"
}
],
"title": "CVE-2017-14492"
},
{
"cve": "CVE-2017-14493",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14493"
}
],
"notes": [
{
"category": "general",
"text": "Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DHCPv6 request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14493",
"url": "https://www.suse.com/security/cve/CVE-2017-14493"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "external",
"summary": "SUSE Bug 1063832 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1063832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:51:46Z",
"details": "moderate"
}
],
"title": "CVE-2017-14493"
},
{
"cve": "CVE-2017-14494",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14494"
}
],
"notes": [
{
"category": "general",
"text": "dnsmasq before 2.78, when configured as a relay, allows remote attackers to obtain sensitive memory information via vectors involving handling DHCPv6 forwarded requests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14494",
"url": "https://www.suse.com/security/cve/CVE-2017-14494"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:51:46Z",
"details": "moderate"
}
],
"title": "CVE-2017-14494"
},
{
"cve": "CVE-2017-14495",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14495"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in dnsmasq before 2.78, when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service (memory consumption) via vectors involving DNS response creation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14495",
"url": "https://www.suse.com/security/cve/CVE-2017-14495"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:51:46Z",
"details": "important"
}
],
"title": "CVE-2017-14495"
},
{
"cve": "CVE-2017-14496",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14496"
}
],
"notes": [
{
"category": "general",
"text": "Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14496",
"url": "https://www.suse.com/security/cve/CVE-2017-14496"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:dnsmasq-2.78-0.17.5.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-10-02T13:51:46Z",
"details": "important"
}
],
"title": "CVE-2017-14496"
}
]
}
fkie_cve-2017-14491
Vulnerability from fkie_nvd
Published
2017-10-04 01:29
Modified
2025-04-20 01:37
Severity ?
Summary
Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00003.html | Mailing List, Third Party Advisory | |
| cve@mitre.org | http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00004.html | Mailing List, Third Party Advisory | |
| cve@mitre.org | http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00005.html | Mailing List, Third Party Advisory | |
| cve@mitre.org | http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00006.html | Mailing List, Third Party Advisory | |
| cve@mitre.org | http://nvidia.custhelp.com/app/answers/detail/a_id/4560 | Third Party Advisory | |
| cve@mitre.org | http://nvidia.custhelp.com/app/answers/detail/a_id/4561 | Third Party Advisory | |
| cve@mitre.org | http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html | Exploit, Third Party Advisory, VDB Entry | |
| cve@mitre.org | http://thekelleys.org.uk/dnsmasq/CHANGELOG | Release Notes, Vendor Advisory | |
| cve@mitre.org | http://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=0549c73b7ea6b22a3c49beb4d432f185a81efcbc | ||
| cve@mitre.org | http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt | Third Party Advisory | |
| cve@mitre.org | http://www.debian.org/security/2017/dsa-3989 | Third Party Advisory | |
| cve@mitre.org | http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en | Third Party Advisory | |
| cve@mitre.org | http://www.securityfocus.com/bid/101085 | Broken Link | |
| cve@mitre.org | http://www.securityfocus.com/bid/101977 | Broken Link | |
| cve@mitre.org | http://www.securitytracker.com/id/1039474 | Broken Link | |
| cve@mitre.org | http://www.ubuntu.com/usn/USN-3430-1 | Third Party Advisory | |
| cve@mitre.org | http://www.ubuntu.com/usn/USN-3430-2 | Third Party Advisory | |
| cve@mitre.org | http://www.ubuntu.com/usn/USN-3430-3 | Third Party Advisory | |
| cve@mitre.org | https://access.redhat.com/errata/RHSA-2017:2836 | Third Party Advisory | |
| cve@mitre.org | https://access.redhat.com/errata/RHSA-2017:2837 | Third Party Advisory | |
| cve@mitre.org | https://access.redhat.com/errata/RHSA-2017:2838 | Third Party Advisory | |
| cve@mitre.org | https://access.redhat.com/errata/RHSA-2017:2839 | Third Party Advisory | |
| cve@mitre.org | https://access.redhat.com/errata/RHSA-2017:2840 | Third Party Advisory | |
| cve@mitre.org | https://access.redhat.com/errata/RHSA-2017:2841 | Third Party Advisory | |
| cve@mitre.org | https://access.redhat.com/security/vulnerabilities/3199382 | Third Party Advisory | |
| cve@mitre.org | https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf | Patch, Third Party Advisory | |
| cve@mitre.org | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB/ | ||
| cve@mitre.org | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD/ | ||
| cve@mitre.org | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV/ | ||
| cve@mitre.org | https://security.gentoo.org/glsa/201710-27 | Third Party Advisory | |
| cve@mitre.org | https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html | Third Party Advisory | |
| cve@mitre.org | https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30 | Mitigation, Third Party Advisory | |
| cve@mitre.org | https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449 | Third Party Advisory | |
| cve@mitre.org | https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/ | Third Party Advisory | |
| cve@mitre.org | https://www.debian.org/security/2017/dsa-3989 | Third Party Advisory | |
| cve@mitre.org | https://www.exploit-db.com/exploits/42941/ | Exploit, Third Party Advisory, VDB Entry | |
| cve@mitre.org | https://www.kb.cert.org/vuls/id/973527 | Third Party Advisory, US Government Resource | |
| cve@mitre.org | https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11664.html | ||
| cve@mitre.org | https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11665.html | ||
| cve@mitre.org | https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00003.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00004.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00005.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00006.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://nvidia.custhelp.com/app/answers/detail/a_id/4560 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://nvidia.custhelp.com/app/answers/detail/a_id/4561 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html | Exploit, Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | http://thekelleys.org.uk/dnsmasq/CHANGELOG | Release Notes, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=0549c73b7ea6b22a3c49beb4d432f185a81efcbc | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.debian.org/security/2017/dsa-3989 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/101085 | Broken Link | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/101977 | Broken Link | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securitytracker.com/id/1039474 | Broken Link | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.ubuntu.com/usn/USN-3430-1 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.ubuntu.com/usn/USN-3430-2 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.ubuntu.com/usn/USN-3430-3 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2017:2836 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2017:2837 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2017:2838 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2017:2839 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2017:2840 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2017:2841 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/security/vulnerabilities/3199382 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://security.gentoo.org/glsa/201710-27 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30 | Mitigation, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.debian.org/security/2017/dsa-3989 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.exploit-db.com/exploits/42941/ | Exploit, Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.kb.cert.org/vuls/id/973527 | Third Party Advisory, US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11664.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11665.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| thekelleys | dnsmasq | * | |
| redhat | enterprise_linux_desktop | 6.0 | |
| redhat | enterprise_linux_desktop | 7.0 | |
| redhat | enterprise_linux_server | 6.0 | |
| redhat | enterprise_linux_server | 7.0 | |
| redhat | enterprise_linux_workstation | 6.0 | |
| redhat | enterprise_linux_workstation | 7.0 | |
| canonical | ubuntu_linux | 12.04 | |
| canonical | ubuntu_linux | 12.04 | |
| canonical | ubuntu_linux | 14.04 | |
| canonical | ubuntu_linux | 16.04 | |
| canonical | ubuntu_linux | 17.04 | |
| debian | debian_linux | 7.0 | |
| debian | debian_linux | 7.1 | |
| debian | debian_linux | 8.0 | |
| debian | debian_linux | 9.0 | |
| opensuse | leap | 42.2 | |
| opensuse | leap | 42.3 | |
| suse | linux_enterprise_debuginfo | 11 | |
| suse | linux_enterprise_debuginfo | 11 | |
| suse | linux_enterprise_point_of_sale | 11 | |
| suse | linux_enterprise_server | 11 | |
| suse | linux_enterprise_server | 11 | |
| suse | linux_enterprise_server | 12 | |
| nvidia | linux_for_tegra | * | |
| nvidia | jetson_tk1 | - | |
| nvidia | linux_for_tegra | * | |
| nvidia | jetson_tx1 | - | |
| nvidia | geforce_experience | * | |
| microsoft | windows | - | |
| huawei | honor_v9_play_firmware | * | |
| huawei | honor_v9_play | - | |
| arista | eos | * | |
| arista | eos | * | |
| arista | eos | * | |
| arista | eos | * | |
| siemens | ruggedcom_rm1224_firmware | * | |
| siemens | ruggedcom_rm1224 | - | |
| siemens | scalance_m-800_firmware | * | |
| siemens | scalance_m-800 | - | |
| siemens | scalance_s615_firmware | * | |
| siemens | scalance_s615 | - | |
| siemens | scalance_w1750d_firmware | * | |
| siemens | scalance_w1750d | - | |
| arubanetworks | arubaos | * | |
| arubanetworks | arubaos | * | |
| arubanetworks | arubaos | * | |
| arubanetworks | arubaos | * | |
| arubanetworks | arubaos | * | |
| arubanetworks | arubaos | * | |
| synology | router_manager | 1.1 | |
| synology | diskstation_manager | 5.2 | |
| synology | diskstation_manager | 6.0 | |
| synology | diskstation_manager | 6.1 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:thekelleys:dnsmasq:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B85D7A28-8CBA-4D77-AD30-DB3CA49F2F98",
"versionEndIncluding": "2.77",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "33C068A4-3780-4EAB-A937-6082DF847564",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "9BBCD86A-E6C7-4444-9D74-F861084090F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E5ED5807-55B7-47C5-97A6-03233F4FBC3A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*",
"matchCriteriaId": "CB66DB75-2B16-4EBF-9B93-CE49D8086E41",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "B6B7CAD7-9D4E-4FDB-88E3-1E583210A01F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "B5A6F2F3-4894-4392-8296-3B8DD2679084",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:17.04:*:*:*:*:*:*:*",
"matchCriteriaId": "588D4F37-0A56-47A4-B710-4D5F3D214FB9",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "7B21E9A8-CE63-42C2-A11A-94D977A96DF1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:opensuse:leap:42.2:*:*:*:*:*:*:*",
"matchCriteriaId": "1EA337A3-B9A3-4962-B8BD-8E0C7C5B28EB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*",
"matchCriteriaId": "5F65DAB0-3DAD-49FF-BC73-3581CC3D5BF3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp3:*:*:*:*:*:*",
"matchCriteriaId": "58D3B6FD-B474-4B09-B644-A8634A629280",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp4:*:*:*:*:*:*",
"matchCriteriaId": "F892F1B0-514C-42F7-90AE-12ACDFDC1033",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:suse:linux_enterprise_point_of_sale:11:sp3:*:*:*:*:*:*",
"matchCriteriaId": "0FC411C9-9A8A-49D0-B704-2207674778CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:ltss:*:*:*",
"matchCriteriaId": "B12243B2-D726-404C-ABFF-F1AB51BA1783",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:11:sp4:*:*:*:*:*:*",
"matchCriteriaId": "55C5561F-BE86-4EEA-99D4-8697F8BD9DFE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:12:*:*:*:ltss:*:*:*",
"matchCriteriaId": "B2F3699A-38E4-4E9D-9414-411F71D9E371",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nvidia:linux_for_tegra:*:*:*:*:*:*:*:*",
"matchCriteriaId": "54DF7A22-DF8B-4272-8EC6-48173E8860B8",
"versionEndExcluding": "r21.6",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nvidia:jetson_tk1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "810B05A3-29CF-464F-9E63-8238AA0651AF",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:nvidia:linux_for_tegra:*:*:*:*:*:*:*:*",
"matchCriteriaId": "22159717-67FD-4A10-9F65-4434FEC1F922",
"versionEndExcluding": "r24.2.2",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:nvidia:jetson_tx1:-:*:*:*:*:*:*:*",
"matchCriteriaId": "86D1FDAD-C594-43D9-9BF6-F7461177AB91",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:nvidia:geforce_experience:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5454038C-F1F0-4061-8B5C-04A8CF1658C6",
"versionEndExcluding": "3.10.0.55",
"versionStartIncluding": "3.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:huawei:honor_v9_play_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "CF744446-5C60-4C66-BE6B-DD108487B46C",
"versionEndExcluding": "jimmy-al00ac00b135",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:huawei:honor_v9_play:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B543AF24-5D59-4A46-AC76-0EFF314E3D1A",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E861FF18-4E42-4092-81B6-0BB32679B2CF",
"versionEndIncluding": "4.15",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E2DED50F-C1ED-43EB-9E63-B65F4F287F41",
"versionEndExcluding": "4.16.13m",
"versionStartIncluding": "4.16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B5F144E5-EFB1-47E7-A2D2-28DEE6045CF6",
"versionEndExcluding": "4.17.8m",
"versionStartIncluding": "4.17",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8F1A3AF8-D105-4F13-8921-D94DCC7DE1AF",
"versionEndIncluding": "4.18.4.2f",
"versionStartIncluding": "4.18",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:ruggedcom_rm1224_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "63C108C5-0EF5-4C6D-8D83-ADB5EED24A6F",
"versionEndExcluding": "5.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:ruggedcom_rm1224:-:*:*:*:*:*:*:*",
"matchCriteriaId": "284DF779-D900-48B4-A177-7281CD445AB5",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:scalance_m-800_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E25B682B-83F5-4903-9138-16907DC7A859",
"versionEndExcluding": "5.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:scalance_m-800:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DFB9921A-5204-40A3-88AB-B7755F5C6875",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:scalance_s615_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E8B2D681-1FBF-4013-B223-9878F4F1DB27",
"versionEndExcluding": "5.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:scalance_s615:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E917CBBB-EF41-4113-B0CA-EB91889235E7",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:scalance_w1750d_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "AE55F796-FA73-4992-9826-57A00F77F6CA",
"versionEndExcluding": "6.5.1.5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:scalance_w1750d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FBC30055-239F-4BB1-B2D1-E5E35F0D8911",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "CFE6B116-71BB-49BF-A5EF-4460D9089511",
"versionEndExcluding": "6.3.1.25",
"versionStartIncluding": "6.3.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "193354A0-B108-4CA4-A1C3-F5F23147A295",
"versionEndExcluding": "6.4.4.16",
"versionStartIncluding": "6.4.4.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "47D1AB4F-0922-49AF-9AE5-AEB4019E652C",
"versionEndExcluding": "6.5.1.9",
"versionStartIncluding": "6.5.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8F5D03FA-CE4E-4888-88E2-384986A890BA",
"versionEndExcluding": "6.5.3.3",
"versionStartIncluding": "6.5.3.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E39B25F2-C65B-457F-A36E-14FC8285A004",
"versionEndExcluding": "6.5.4.2",
"versionStartIncluding": "6.5.4.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "00E53FE9-EA96-456A-B522-FC81DD0CCE3E",
"versionEndExcluding": "8.1.0.4",
"versionStartIncluding": "8.1.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:synology:router_manager:1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "46261C28-E276-4639-BA3D-A735B02599F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:synology:diskstation_manager:5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "01527614-8A68-48DC-B0A0-F4AA99489221",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:synology:diskstation_manager:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "65372FA7-B54B-4298-99BF-483E9FEBA253",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:synology:diskstation_manager:6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "3D04EA1A-F8E0-415B-8786-1C8C0F08E132",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response."
},
{
"lang": "es",
"value": "Un desbordamiento de b\u00fafer basado en memoria din\u00e1mica (heap) en dnsmasq en versiones anteriores a la 2.78 permite a los atacantes provocar una denegaci\u00f3n de servicio (cierre inesperado) o ejecutar c\u00f3digo arbitrario utilizando una respuesta DNS manipulada."
}
],
"id": "CVE-2017-14491",
"lastModified": "2025-04-20T01:37:25.860",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2017-10-04T01:29:02.870",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00003.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00004.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00005.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00006.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4560"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4561"
},
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Release Notes",
"Vendor Advisory"
],
"url": "http://thekelleys.org.uk/dnsmasq/CHANGELOG"
},
{
"source": "cve@mitre.org",
"url": "http://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=0549c73b7ea6b22a3c49beb4d432f185a81efcbc"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://www.debian.org/security/2017/dsa-3989"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link"
],
"url": "http://www.securityfocus.com/bid/101085"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link"
],
"url": "http://www.securityfocus.com/bid/101977"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link"
],
"url": "http://www.securitytracker.com/id/1039474"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-3430-1"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-3430-2"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-3430-3"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2836"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2837"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2838"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2839"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2840"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2841"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf"
},
{
"source": "cve@mitre.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB/"
},
{
"source": "cve@mitre.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD/"
},
{
"source": "cve@mitre.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV/"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/201710-27"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Mitigation",
"Third Party Advisory"
],
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2017/dsa-3989"
},
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/42941/"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://www.kb.cert.org/vuls/id/973527"
},
{
"source": "cve@mitre.org",
"url": "https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11664.html"
},
{
"source": "cve@mitre.org",
"url": "https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11665.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00003.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00004.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00005.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00006.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4560"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4561"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Release Notes",
"Vendor Advisory"
],
"url": "http://thekelleys.org.uk/dnsmasq/CHANGELOG"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=0549c73b7ea6b22a3c49beb4d432f185a81efcbc"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.debian.org/security/2017/dsa-3989"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://www.securityfocus.com/bid/101085"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://www.securityfocus.com/bid/101977"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://www.securitytracker.com/id/1039474"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-3430-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-3430-2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-3430-3"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2836"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2837"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2838"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2839"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2840"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2841"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/201710-27"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mitigation",
"Third Party Advisory"
],
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2017/dsa-3989"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/42941/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://www.kb.cert.org/vuls/id/973527"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11664.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11665.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
ssa-770721
Vulnerability from csaf_siemens
Published
2024-03-12 00:00
Modified
2024-03-12 00:00
Summary
SSA-770721: Multiple Vulnerabilities in SIMATIC RF160B before V2.2
Notes
Summary
SIMATIC RF160B contain multiple vulnerabilities of different types that could allow an attacker to execute arbitrary code within the context of a privileged process.
Siemens has released a new version for SIMATIC RF160B and recommends to update to the latest version.
General Recommendations
As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download:
https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.
Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Additional Resources
For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use
Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter "License Terms"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter "Terms of Use"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited. (TLPv2: TLP:CLEAR)",
"tlp": {
"label": "WHITE"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "SIMATIC RF160B contain multiple vulnerabilities of different types that could allow an attacker to execute arbitrary code within the context of a privileged process.\n\nSiemens has released a new version for SIMATIC RF160B and recommends to update to the latest version.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "productcert@siemens.com",
"name": "Siemens ProductCERT",
"namespace": "https://www.siemens.com"
},
"references": [
{
"category": "self",
"summary": "SSA-770721: Multiple Vulnerabilities in SIMATIC RF160B before V2.2 - HTML Version",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-770721.html"
},
{
"category": "self",
"summary": "SSA-770721: Multiple Vulnerabilities in SIMATIC RF160B before V2.2 - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-770721.json"
},
{
"category": "self",
"summary": "SSA-770721: Multiple Vulnerabilities in SIMATIC RF160B before V2.2 - PDF Version",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-770721.pdf"
},
{
"category": "self",
"summary": "SSA-770721: Multiple Vulnerabilities in SIMATIC RF160B before V2.2 - TXT Version",
"url": "https://cert-portal.siemens.com/productcert/txt/ssa-770721.txt"
}
],
"title": "SSA-770721: Multiple Vulnerabilities in SIMATIC RF160B before V2.2",
"tracking": {
"current_release_date": "2024-03-12T00:00:00Z",
"generator": {
"engine": {
"name": "Siemens ProductCERT CSAF Generator",
"version": "1"
}
},
"id": "SSA-770721",
"initial_release_date": "2024-03-12T00:00:00Z",
"revision_history": [
{
"date": "2024-03-12T00:00:00Z",
"legacy_version": "1.0",
"number": "1",
"summary": "Publication Date"
}
],
"status": "interim",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV2.2",
"product": {
"name": "SIMATIC RF160B (6GT2003-0FA00)",
"product_id": "1",
"product_identification_helper": {
"model_numbers": [
"6GT2003-0FA00"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC RF160B (6GT2003-0FA00)"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-14491",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "summary",
"text": "An attacker could cause a crash or potentially execute arbitrary code by sending specially crafted DNS responses to the DNSmasq process. In order to exploit this vulnerability, an attacker must be able to trigger DNS requests from the device, and must be in a privileged position to inject malicious DNS responses.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2017-14491"
},
{
"cve": "CVE-2017-18509",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in net/ipv6/ip6mr.c in the Linux kernel before 4.11. By setting a specific socket option, an attacker can control a pointer in kernel land and cause an inet_csk_listen_stop general protection fault, or potentially execute arbitrary code under certain circumstances. The issue can be triggered as root (e.g., inside a default LXC container or with the CAP_NET_ADMIN capability) or after namespace unsharing. This occurs because sk_type and protocol are not checked in the appropriate part of the ip6_mroute_* functions. NOTE: this affects Linux distributions that use 4.9.x longterm kernels before 4.9.187.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2017-18509"
},
{
"cve": "CVE-2020-0338",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "summary",
"text": "In checkKeyIntent of AccountManagerService.java, there is a possible permission bypass. This could lead to local information disclosure with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-9Android ID: A-123700107",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2020-0338"
},
{
"cve": "CVE-2020-0417",
"cwe": {
"id": "CWE-732",
"name": "Incorrect Permission Assignment for Critical Resource"
},
"notes": [
{
"category": "summary",
"text": "In setNiNotification of GpsNetInitiatedHandler.java, there is a possible permissions bypass due to an empty mutable PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-8.1 Android-9Android ID: A-154319182",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2020-0417"
},
{
"cve": "CVE-2020-10768",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"notes": [
{
"category": "summary",
"text": "A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl() function, where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as being \u0027force disabled\u0027 when it is not and opens the system to Spectre v2 attacks. The highest threat from this vulnerability is to confidentiality.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2020-10768"
},
{
"cve": "CVE-2020-11301",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"notes": [
{
"category": "summary",
"text": "Improper authentication of un-encrypted plaintext Wi-Fi frames in an encrypted network can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice \u0026 Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2020-11301"
},
{
"cve": "CVE-2020-14305",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "An out-of-bounds memory write flaw was found in how the Linux kernel\u2019s Voice Over IP H.323 connection tracking functionality handled connections on ipv6 port 1720. This flaw allows an unauthenticated remote user to crash the system, causing a denial of service. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2020-14305"
},
{
"cve": "CVE-2020-14381",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A flaw was found in the Linux kernel\u2019s futex implementation. This flaw allows a local attacker to corrupt system memory or escalate their privileges when creating a futex on a filesystem that is about to be unmounted. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2020-14381"
},
{
"cve": "CVE-2020-15436",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "Use-after-free vulnerability in fs/block_dev.c in the Linux kernel before 5.8 allows local users to gain privileges or cause a denial of service by leveraging improper access to a certain error field.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2020-15436"
},
{
"cve": "CVE-2020-24587",
"cwe": {
"id": "CWE-326",
"name": "Inadequate Encryption Strength"
},
"notes": [
{
"category": "summary",
"text": "The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn\u0027t require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.6,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:U/RL:U/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2020-24587"
},
{
"cve": "CVE-2020-25705",
"cwe": {
"id": "CWE-330",
"name": "Use of Insufficiently Random Values"
},
"notes": [
{
"category": "summary",
"text": "A flaw in ICMP packets in the Linux kernel was found to allow to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass source port UDP randomization. Software that relies on UDP source port randomization are indirectly affected as well. Kernel versions before 5.10 may be vulnerable to this issue.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2020-25705"
},
{
"cve": "CVE-2020-26555",
"cwe": {
"id": "CWE-863",
"name": "Incorrect Authorization"
},
"notes": [
{
"category": "summary",
"text": "Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B through 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing without knowledge of the PIN.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2020-26555"
},
{
"cve": "CVE-2020-26558",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"notes": [
{
"category": "summary",
"text": "Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 through 5.2 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (in the Passkey authentication procedure) by reflection of the public key and the authentication evidence of the initiating device, potentially permitting this attacker to complete authenticated pairing with the responding device using the correct Passkey for the pairing session. The attack methodology determines the Passkey value one bit at a time.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2020-26558"
},
{
"cve": "CVE-2020-29660",
"cwe": {
"id": "CWE-667",
"name": "Improper Locking"
},
"notes": [
{
"category": "summary",
"text": "A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2020-29660"
},
{
"cve": "CVE-2020-29661",
"cwe": {
"id": "CWE-667",
"name": "Improper Locking"
},
"notes": [
{
"category": "summary",
"text": "A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2020-29661"
},
{
"cve": "CVE-2021-0302",
"cwe": {
"id": "CWE-1021",
"name": "Improper Restriction of Rendered UI Layers or Frames"
},
"notes": [
{
"category": "summary",
"text": "In PackageInstaller, there is a possible tapjacking attack due to an insecure default value. This could lead to local escalation of privilege and permissions with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10Android ID: A-155287782",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0302"
},
{
"cve": "CVE-2021-0305",
"cwe": {
"id": "CWE-1021",
"name": "Improper Restriction of Rendered UI Layers or Frames"
},
"notes": [
{
"category": "summary",
"text": "In PackageInstaller, there is a possible tapjacking attack due to an insecure default value. This could lead to local escalation of privilege and permissions with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10Android ID: A-154015447",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0305"
},
{
"cve": "CVE-2021-0325",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In ih264d_parse_pslice of ih264d_parse_pslice.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-174238784",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0325"
},
{
"cve": "CVE-2021-0326",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In p2p_copy_client_info of p2p.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution if the target device is performing a Wi-Fi Direct search, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-8.1 Android-9Android ID: A-172937525",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0326"
},
{
"cve": "CVE-2021-0327",
"cwe": {
"id": "CWE-269",
"name": "Improper Privilege Management"
},
"notes": [
{
"category": "summary",
"text": "In getContentProviderImpl of ActivityManagerService.java, there is a possible permission bypass due to non-restored binder identities. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-172935267",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0327"
},
{
"cve": "CVE-2021-0328",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "summary",
"text": "In onBatchScanReports and deliverBatchScan of GattService.java, there is a possible way to retrieve Bluetooth scan results without permissions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-8.1 Android-9Android ID: A-172670415",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0328"
},
{
"cve": "CVE-2021-0329",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In several native functions called by AdvertiseManager.java, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the Bluetooth server with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-171400004",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0329"
},
{
"cve": "CVE-2021-0330",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In add_user_ce and remove_user_ce of storaged.cpp, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in storaged with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11Android ID: A-170732441",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0330"
},
{
"cve": "CVE-2021-0331",
"cwe": {
"id": "CWE-1021",
"name": "Improper Restriction of Rendered UI Layers or Frames"
},
"notes": [
{
"category": "summary",
"text": "In onCreate of NotificationAccessConfirmationActivity.java, there is a possible overlay attack due to an insecure default value. This could lead to local escalation of privilege and notification access with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-170731783",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0331"
},
{
"cve": "CVE-2021-0333",
"cwe": {
"id": "CWE-1021",
"name": "Improper Restriction of Rendered UI Layers or Frames"
},
"notes": [
{
"category": "summary",
"text": "In onCreate of BluetoothPermissionActivity.java, there is a possible permissions bypass due to a tapjacking overlay that obscures the phonebook permissions dialog when a Bluetooth device is connecting. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-168504491",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0333"
},
{
"cve": "CVE-2021-0334",
"cwe": {
"id": "CWE-732",
"name": "Incorrect Permission Assignment for Critical Resource"
},
"notes": [
{
"category": "summary",
"text": "In onTargetSelected of ResolverActivity.java, there is a possible settings bypass allowing an app to become the default handler for arbitrary domains. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-163358811",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0334"
},
{
"cve": "CVE-2021-0336",
"cwe": {
"id": "CWE-732",
"name": "Incorrect Permission Assignment for Critical Resource"
},
"notes": [
{
"category": "summary",
"text": "In onReceive of BluetoothPermissionRequest.java, there is a possible permissions bypass due to a mutable PendingIntent. This could lead to local escalation of privilege that bypasses a permission check, with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-158219161",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0336"
},
{
"cve": "CVE-2021-0337",
"cwe": {
"id": "CWE-312",
"name": "Cleartext Storage of Sensitive Information"
},
"notes": [
{
"category": "summary",
"text": "In moveInMediaStore of FileSystemProvider.java, there is a possible file exposure due to stale metadata. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-157474195",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0337"
},
{
"cve": "CVE-2021-0339",
"cwe": {
"id": "CWE-754",
"name": "Improper Check for Unusual or Exceptional Conditions"
},
"notes": [
{
"category": "summary",
"text": "In loadAnimation of WindowContainer.java, there is a possible way to keep displaying a malicious app while a target app is brought to the foreground. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-8.1 Android-9Android ID: A-145728687",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0339"
},
{
"cve": "CVE-2021-0341",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"notes": [
{
"category": "summary",
"text": "In verifyHostName of OkHostnameVerifier.java, there is a possible way to accept a certificate for the wrong domain due to improperly used crypto. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-171980069",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0341"
},
{
"cve": "CVE-2021-0390",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "summary",
"text": "In various methods of WifiNetworkSuggestionsManager.java, there is a possible modification of suggested networks due to a missing permission check. This could lead to local escalation of privilege by a background user on the same device with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-174749461",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0390"
},
{
"cve": "CVE-2021-0391",
"cwe": {
"id": "CWE-1021",
"name": "Improper Restriction of Rendered UI Layers or Frames"
},
"notes": [
{
"category": "summary",
"text": "In onCreate() of ChooseTypeAndAccountActivity.java, there is a possible way to learn the existence of an account, without permissions, due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-172841550",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0391"
},
{
"cve": "CVE-2021-0392",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"notes": [
{
"category": "summary",
"text": "In main of main.cpp, there is a possible memory corruption due to a double free. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-9Android ID: A-175124730",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0392"
},
{
"cve": "CVE-2021-0393",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "In Scanner::LiteralBuffer::NewCapacity of scanner.cc, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution if an attacker can supply a malicious PAC file, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-168041375",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0393"
},
{
"cve": "CVE-2021-0394",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "In android_os_Parcel_readString8 of android_os_Parcel.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-172655291",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0394"
},
{
"cve": "CVE-2021-0396",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In Builtins::Generate_ArgumentsAdaptorTrampoline of builtins-arm.cc and related files, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution in an unprivileged process with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-160610106",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0396"
},
{
"cve": "CVE-2021-0397",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"notes": [
{
"category": "summary",
"text": "In sdp_copy_raw_data of sdp_discovery.cc, there is a possible system compromise due to a double free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-174052148",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0397"
},
{
"cve": "CVE-2021-0399",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In qtaguid_untag of xt_qtaguid.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-176919394References: Upstream kernel",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0399"
},
{
"cve": "CVE-2021-0400",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "In injectBestLocation and handleUpdateLocation of GnssLocationProvider.java, there is a possible incorrect reporting of location data to emergency services due to improper input validation. This could lead to incorrect reporting of location data to emergency services with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11Android ID: A-177561690",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0400"
},
{
"cve": "CVE-2021-0429",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In pollOnce of ALooper.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-175074139",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0429"
},
{
"cve": "CVE-2021-0431",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "In avrc_msg_cback of avrc_api.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure to a paired device with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-174149901",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0431"
},
{
"cve": "CVE-2021-0433",
"cwe": {
"id": "CWE-1021",
"name": "Improper Restriction of Rendered UI Layers or Frames"
},
"notes": [
{
"category": "summary",
"text": "In onCreate of DeviceChooserActivity.java, there is a possible way to bypass user consent when pairing a Bluetooth device due to a tapjacking/overlay attack. This could lead to local escalation of privilege and pairing malicious devices with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-171221090",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0433"
},
{
"cve": "CVE-2021-0434",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "summary",
"text": "In onReceive of BluetoothPermissionRequest.java, there is a possible phishing attack allowing a malicious Bluetooth device to acquire permissions based on insufficient information presented to the user in the consent dialog. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-9Android ID: A-167403112",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0434"
},
{
"cve": "CVE-2021-0435",
"cwe": {
"id": "CWE-665",
"name": "Improper Initialization"
},
"notes": [
{
"category": "summary",
"text": "In avrc_proc_vendor_command of avrc_api.cc, there is a possible leak of heap data due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-174150451",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0435"
},
{
"cve": "CVE-2021-0436",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out of bounds read due to integer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-176496160",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0436"
},
{
"cve": "CVE-2021-0437",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"notes": [
{
"category": "summary",
"text": "In setPlayPolicy of DrmPlugin.cpp, there is a possible double free. This could lead to local escalation of privilege in a privileged process with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-176168330",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0437"
},
{
"cve": "CVE-2021-0438",
"cwe": {
"id": "CWE-1021",
"name": "Improper Restriction of Rendered UI Layers or Frames"
},
"notes": [
{
"category": "summary",
"text": "In several functions of InputDispatcher.cpp, WindowManagerService.java, and related files, there is a possible tapjacking attack due to an incorrect FLAG_OBSCURED value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10Android ID: A-152064592",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0438"
},
{
"cve": "CVE-2021-0443",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "In several functions of ScreenshotHelper.java and related files, there is a possible incorrectly saved screenshot due to a race condition. This could lead to local information disclosure across user profiles with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-170474245",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0443"
},
{
"cve": "CVE-2021-0444",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "summary",
"text": "In onActivityResult of QuickContactActivity.java, there is an unnecessary return of an intent. This could lead to local information disclosure of contact data with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-178825358",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0444"
},
{
"cve": "CVE-2021-0471",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "In decrypt_1_2 of CryptoPlugin.cpp, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-176444786",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0471"
},
{
"cve": "CVE-2021-0473",
"cwe": {
"id": "CWE-908",
"name": "Use of Uninitialized Resource"
},
"notes": [
{
"category": "summary",
"text": "In rw_t3t_process_error of rw_t3t.cc, there is a possible double free due to uninitialized data. This could lead to remote code execution over NFC with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-179687208",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0473"
},
{
"cve": "CVE-2021-0474",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In avrc_msg_cback of avrc_api.cc, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-177611958",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0474"
},
{
"cve": "CVE-2021-0476",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "In FindOrCreatePeer of btif_av.cc, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-9 Android-10Android ID: A-169252501",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0476"
},
{
"cve": "CVE-2021-0478",
"cwe": {
"id": "CWE-755",
"name": "Improper Handling of Exceptional Conditions"
},
"notes": [
{
"category": "summary",
"text": "In updateDrawable of StatusBarIconView.java, there is a possible permission bypass due to an uncaught exception. This could lead to local escalation of privilege by running foreground services without notifying the user, with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-8.1 Android-9Android ID: A-169255797",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0478"
},
{
"cve": "CVE-2021-0480",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "summary",
"text": "In createPendingIntent of SnoozeHelper.java, there is a possible broadcast intent containing a sensitive identifier. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-8.1 Android-9Android ID: A-174493336",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0480"
},
{
"cve": "CVE-2021-0481",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "In onActivityResult of EditUserPhotoController.java, there is a possible access of unauthorized files due to an unexpected URI handler. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-172939189",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0481"
},
{
"cve": "CVE-2021-0484",
"cwe": {
"id": "CWE-909",
"name": "Missing Initialization of Resource"
},
"notes": [
{
"category": "summary",
"text": "In readVector of IMediaPlayer.cpp, there is a possible read of uninitialized heap data due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-173720767",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0484"
},
{
"cve": "CVE-2021-0506",
"cwe": {
"id": "CWE-1021",
"name": "Improper Restriction of Rendered UI Layers or Frames"
},
"notes": [
{
"category": "summary",
"text": "In ActivityPicker.java, there is a possible bypass of user interaction in intent resolution due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-8.1 Android-9Android ID: A-181962311",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0506"
},
{
"cve": "CVE-2021-0507",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In handle_rc_metamsg_cmd of btif_rc.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-181860042",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0507"
},
{
"cve": "CVE-2021-0508",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In various functions of DrmPlugin.cpp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-176444154",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0508"
},
{
"cve": "CVE-2021-0509",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In various functions of CryptoPlugin.cpp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-176444161",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0509"
},
{
"cve": "CVE-2021-0510",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "In decrypt_1_2 of CryptoPlugin.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-176444622",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0510"
},
{
"cve": "CVE-2021-0511",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "In Dex2oat of dex2oat.cc, there is a possible way to inject bytecode into an app due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11Android ID: A-178055795",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0511"
},
{
"cve": "CVE-2021-0512",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In __hidinput_change_resolution_multipliers of hid-input.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-173843328References: Upstream kernel",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0512"
},
{
"cve": "CVE-2021-0513",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "summary",
"text": "In deleteNotificationChannel and related functions of NotificationManagerService.java, there is a possible permission bypass due to improper state validation. This could lead to local escalation of privilege via hidden services with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-156090809",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0513"
},
{
"cve": "CVE-2021-0514",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "In several functions of the V8 library, there is a possible use after free due to a race condition. This could lead to remote code execution in an unprivileged process with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-9 Android-11 Android-8.1Android ID: A-162604069",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0514"
},
{
"cve": "CVE-2021-0515",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In Factory::CreateStrictFunctionMap of factory.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution in an unprivileged process with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-167389063",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0515"
},
{
"cve": "CVE-2021-0516",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In p2p_process_prov_disc_req of p2p_pd.c, there is a possible out of bounds read and write due to a use after free. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-181660448",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0516"
},
{
"cve": "CVE-2021-0519",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In BITSTREAM_FLUSH of ih264e_bitstream.h, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-8.1 Android-9Android ID: A-176533109",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0519"
},
{
"cve": "CVE-2021-0520",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In several functions of MemoryFileSystem.cpp and related files, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-10Android ID: A-176237595",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0520"
},
{
"cve": "CVE-2021-0521",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "summary",
"text": "In getAllPackages of PackageManagerService, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure of cross-user permissions with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-174661955",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0521"
},
{
"cve": "CVE-2021-0522",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In ConnectionHandler::SdpCb of connection_handler.cc, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-9 Android-10Android ID: A-174182139",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0522"
},
{
"cve": "CVE-2021-0584",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "In verifyBufferObject of Parcel.cpp, there is a possible out of bounds read due to an improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-179289794",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0584"
},
{
"cve": "CVE-2021-0585",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In beginWrite and beginRead of MessageQueueBase.h, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-184963385",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0585"
},
{
"cve": "CVE-2021-0586",
"cwe": {
"id": "CWE-1021",
"name": "Improper Restriction of Rendered UI Layers or Frames"
},
"notes": [
{
"category": "summary",
"text": "In onCreate of DevicePickerFragment.java, there is a possible way to trick the user to select an unwanted bluetooth device due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-182584940",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0586"
},
{
"cve": "CVE-2021-0587",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In StreamOut::prepareForWriting of StreamOut.cpp, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-185259758",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0587"
},
{
"cve": "CVE-2021-0588",
"cwe": {
"id": "CWE-668",
"name": "Exposure of Resource to Wrong Sphere"
},
"notes": [
{
"category": "summary",
"text": "In processInboundMessage of MceStateMachine.java, there is a possible SMS disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9Android ID: A-177238342",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0588"
},
{
"cve": "CVE-2021-0589",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In BTM_TryAllocateSCN of btm_scn.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-180939982",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0589"
},
{
"cve": "CVE-2021-0591",
"cwe": {
"id": "CWE-610",
"name": "Externally Controlled Reference to a Resource in Another Sphere"
},
"notes": [
{
"category": "summary",
"text": "In sendReplyIntentToReceiver of BluetoothPermissionActivity.java, there is a possible way to invoke privileged broadcast receivers due to a confused deputy. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-179386960",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0591"
},
{
"cve": "CVE-2021-0593",
"cwe": {
"id": "CWE-610",
"name": "Externally Controlled Reference to a Resource in Another Sphere"
},
"notes": [
{
"category": "summary",
"text": "In sendDevicePickedIntent of DevicePickerFragment.java, there is a possible way to invoke a privileged broadcast receiver due to a confused deputy. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-8.1 Android-9Android ID: A-179386068",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0593"
},
{
"cve": "CVE-2021-0594",
"cwe": {
"id": "CWE-74",
"name": "Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "In onCreate of ConfirmConnectActivity, there is a possible remote bypass of user consent due to improper input validation. This could lead to remote (proximal, NFC) escalation of privilege allowing an attacker to deceive a user into allowing a Bluetooth connection with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-176445224",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0594"
},
{
"cve": "CVE-2021-0596",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "In phNciNfc_RecvMfResp of phNxpExtns_MifareStd.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over NFC with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-181346550",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0596"
},
{
"cve": "CVE-2021-0597",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "summary",
"text": "In notifyProfileAdded and notifyProfileRemoved of SipService.java, there is a possible way to retrieve SIP account names due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-176496502",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0597"
},
{
"cve": "CVE-2021-0598",
"cwe": {
"id": "CWE-1021",
"name": "Improper Restriction of Rendered UI Layers or Frames"
},
"notes": [
{
"category": "summary",
"text": "In onCreate of ConfirmConnectActivity.java, there is a possible pairing of untrusted Bluetooth devices due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-180422108",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0598"
},
{
"cve": "CVE-2021-0599",
"cwe": {
"id": "CWE-610",
"name": "Externally Controlled Reference to a Resource in Another Sphere"
},
"notes": [
{
"category": "summary",
"text": "In scheduleTimeoutLocked of NotificationRecord.java, there is a possible disclosure of a sensitive identifier via broadcasted intent due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-175614289",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0599"
},
{
"cve": "CVE-2021-0600",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "In onCreate of DeviceAdminAdd.java, there is a possible way to mislead a user to activate a device admin app due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-179042963",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0600"
},
{
"cve": "CVE-2021-0601",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"notes": [
{
"category": "summary",
"text": "In encodeFrames of avc_enc_fuzzer.cpp, there is a possible out of bounds write due to a double free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-8.1 Android-9Android ID: A-180643802",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0601"
},
{
"cve": "CVE-2021-0604",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "summary",
"text": "In generateFileInfo of BluetoothOppSendFileInfo.java, there is a possible way to share private files over Bluetooth due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-179910660",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0604"
},
{
"cve": "CVE-2021-0640",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In noteAtomLogged of StatsdStats.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-9Android ID: A-187957589",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0640"
},
{
"cve": "CVE-2021-0641",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "summary",
"text": "In getAvailableSubscriptionInfoList of SubscriptionController.java, there is a possible disclosure of unique identifiers due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-185235454",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0641"
},
{
"cve": "CVE-2021-0642",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "summary",
"text": "In onResume of VoicemailSettingsFragment.java, there is a possible way to retrieve a trackable identifier without permissions due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-8.1 Android-9Android ID: A-185126149",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0642"
},
{
"cve": "CVE-2021-0646",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In sqlite3_str_vappendf of sqlite3.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege if the user can also inject a printf into a privileged process\u0027s SQL with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-153352319",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0646"
},
{
"cve": "CVE-2021-0650",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "In WT_InterpolateNoLoop of eas_wtengine.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-9Android ID: A-190286685",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0650"
},
{
"cve": "CVE-2021-0651",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "In loadLabel of PackageItemInfo.java, there is a possible way to DoS a device by having a long label in an app due to incorrect input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11 Android-9 Android-10Android ID: A-67013844",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0651"
},
{
"cve": "CVE-2021-0652",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "In VectorDrawable::VectorDrawable of VectorDrawable.java, there is a possible way to introduce a memory corruption due to sharing of not thread-safe objects. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-185178568",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0652"
},
{
"cve": "CVE-2021-0653",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "summary",
"text": "In enqueueNotification of NetworkPolicyManagerService.java, there is a possible way to retrieve a trackable identifier due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-9Android ID: A-177931370",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0653"
},
{
"cve": "CVE-2021-0682",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "summary",
"text": "In sendAccessibilityEvent of NotificationManagerService.java, there is a possible disclosure of notification data due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-159624555",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0682"
},
{
"cve": "CVE-2021-0683",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "summary",
"text": "In runTraceIpcStop of ActivityManagerShellCommand.java, there is a possible deletion of system files due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.1 Android-9 Android-10Android ID: A-185398942",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0683"
},
{
"cve": "CVE-2021-0684",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In TouchInputMapper::sync of TouchInputMapper.cpp, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-8.1 Android-9Android ID: A-179839665",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0684"
},
{
"cve": "CVE-2021-0687",
"cwe": {
"id": "CWE-834",
"name": "Excessive Iteration"
},
"notes": [
{
"category": "summary",
"text": "In ellipsize of Layout.java, there is a possible ANR due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-188913943",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0687"
},
{
"cve": "CVE-2021-0688",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "In lockNow of PhoneWindowManager.java, there is a possible lock screen bypass due to a race condition. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-8.1 Android-9Android ID: A-161149543",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0688"
},
{
"cve": "CVE-2021-0689",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "In RGB_to_BGR1_portable of SkSwizzler_opts.h, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-8.1 Android-9Android ID: A-190188264",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0689"
},
{
"cve": "CVE-2021-0690",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In ih264d_mark_err_slice_skip of ih264d_parse_pslice.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-182152757",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0690"
},
{
"cve": "CVE-2021-0692",
"cwe": {
"id": "CWE-732",
"name": "Incorrect Permission Assignment for Critical Resource"
},
"notes": [
{
"category": "summary",
"text": "In sendBroadcastToInstaller of FirstScreenBroadcast.java, there is a possible activity launch due to an unsafe PendingIntent. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-9 Android-10Android ID: A-179289753",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0692"
},
{
"cve": "CVE-2021-0695",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In get_sock_stat of xt_qtaguid.c, there is a possible out of bounds read due to a use after free. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-184018316References: Upstream kernel",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0695"
},
{
"cve": "CVE-2021-0704",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"notes": [
{
"category": "summary",
"text": "In createNoCredentialsPermissionNotification and related functions of AccountManagerService.java, there is a possible way to retrieve accounts from the device without permissions due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-9Android ID: A-179338675",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0704"
},
{
"cve": "CVE-2021-0706",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "summary",
"text": "In startListening of PluginManagerImpl.java, there is a possible way to disable arbitrary app components due to a missing permission check. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11Android ID: A-193444889",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0706"
},
{
"cve": "CVE-2021-0708",
"cwe": {
"id": "CWE-610",
"name": "Externally Controlled Reference to a Resource in Another Sphere"
},
"notes": [
{
"category": "summary",
"text": "In runDumpHeap of ActivityManagerShellCommand.java, there is a possible deletion of system files due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-183262161",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0708"
},
{
"cve": "CVE-2021-0870",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "In RW_SetActivatedTagType of rw_main.cc, there is possible memory corruption due to a race condition. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-192472262",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0870"
},
{
"cve": "CVE-2021-0919",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "In getService of IServiceManager.cpp, there is a possible unhandled exception due to an integer overflow. This could lead to local denial of service making the lockscreen unusable with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-9Android ID: A-197336441",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0919"
},
{
"cve": "CVE-2021-0920",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In unix_scm_to_skb of af_unix.c, there is a possible use after free bug due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-196926917References: Upstream kernel",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0920"
},
{
"cve": "CVE-2021-0926",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "summary",
"text": "In onCreate of NfcImportVCardActivity.java, there is a possible way to add a contact without user\u0027s consent due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-191053931",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0926"
},
{
"cve": "CVE-2021-0928",
"cwe": {
"id": "CWE-755",
"name": "Improper Handling of Exceptional Conditions"
},
"notes": [
{
"category": "summary",
"text": "In createFromParcel of OutputConfiguration.java, there is a possible parcel serialization/deserialization mismatch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-9Android ID: A-188675581",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0928"
},
{
"cve": "CVE-2021-0929",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In ion_dma_buf_end_cpu_access and related functions of ion.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-187527909References: Upstream kernel",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0929"
},
{
"cve": "CVE-2021-0930",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In phNxpNciHal_process_ext_rsp of phNxpNciHal_ext.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over NFC with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-181660091",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0930"
},
{
"cve": "CVE-2021-0931",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "summary",
"text": "In getAlias of BluetoothDevice.java, there is a possible way to create misleading permission dialogs due to missing data filtering. This could lead to local information disclosure with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-180747689",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0931"
},
{
"cve": "CVE-2021-0933",
"cwe": {
"id": "CWE-116",
"name": "Improper Encoding or Escaping of Output"
},
"notes": [
{
"category": "summary",
"text": "In onCreate of CompanionDeviceActivity.java or DeviceChooserActivity.java, there is a possible way for HTML tags to interfere with a consent dialog due to improper input validation. This could lead to remote escalation of privilege, confusing the user into accepting pairing of a malicious Bluetooth device, with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-172251622",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0933"
},
{
"cve": "CVE-2021-0952",
"cwe": {
"id": "CWE-311",
"name": "Missing Encryption of Sensitive Data"
},
"notes": [
{
"category": "summary",
"text": "In doCropPhoto of PhotoSelectionHandler.java, there is a possible permission bypass due to a confused deputy. This could lead to local information disclosure of user\u0027s contacts with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-195748381",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0952"
},
{
"cve": "CVE-2021-0953",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"notes": [
{
"category": "summary",
"text": "In setOnClickActivityIntent of SearchWidgetProvider.java, there is a possible way to access contacts and history bookmarks without permission due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-184046278",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0953"
},
{
"cve": "CVE-2021-0961",
"cwe": {
"id": "CWE-909",
"name": "Missing Initialization of Resource"
},
"notes": [
{
"category": "summary",
"text": "In quota_proc_write of xt_quota2.c, there is a possible way to read kernel memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-196046570References: Upstream kernel",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0961"
},
{
"cve": "CVE-2021-0963",
"cwe": {
"id": "CWE-1021",
"name": "Improper Restriction of Rendered UI Layers or Frames"
},
"notes": [
{
"category": "summary",
"text": "In onCreate of KeyChainActivity.java, there is a possible way to use an app certificate stored in keychain due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-199754277",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0963"
},
{
"cve": "CVE-2021-0964",
"cwe": {
"id": "CWE-681",
"name": "Incorrect Conversion between Numeric Types"
},
"notes": [
{
"category": "summary",
"text": "In C2SoftMP3::process() of C2SoftMp3Dec.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-193363621",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0964"
},
{
"cve": "CVE-2021-0965",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "summary",
"text": "In AndroidManifest.xml of Settings, there is a possible pairing of a Bluetooth device without user\u0027s consent due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-194300867",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0965"
},
{
"cve": "CVE-2021-0967",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In vorbis_book_decodev_set of codebook.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-199065614",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0967"
},
{
"cve": "CVE-2021-0968",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "In osi_malloc and osi_calloc of allocator.cc, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-197868577",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0968"
},
{
"cve": "CVE-2021-0970",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"notes": [
{
"category": "summary",
"text": "In createFromParcel of GpsNavigationMessage.java, there is a possible Parcel serialization/deserialization mismatch. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-196970023",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-0970"
},
{
"cve": "CVE-2021-1972",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Possible buffer overflow due to improper validation of device types during P2P search in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice \u0026 Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-1972"
},
{
"cve": "CVE-2021-1976",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice \u0026 Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-1976"
},
{
"cve": "CVE-2021-29647",
"cwe": {
"id": "CWE-909",
"name": "Missing Initialization of Resource"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in the Linux kernel before 5.11.11. qrtr_recvmsg in net/qrtr/qrtr.c allows attackers to obtain sensitive information from kernel memory because of a partially uninitialized data structure, aka CID-50535249f624.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-29647"
},
{
"cve": "CVE-2021-33909",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-33909"
},
{
"cve": "CVE-2021-38204",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "drivers/usb/host/max3421-hcd.c in the Linux kernel before 5.13.6 allows physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-38204"
},
{
"cve": "CVE-2021-39621",
"cwe": {
"id": "CWE-732",
"name": "Incorrect Permission Assignment for Critical Resource"
},
"notes": [
{
"category": "summary",
"text": "In sendLegacyVoicemailNotification of LegacyModeSmsHandler.java, there is a possible permissions bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-185126319",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-39621"
},
{
"cve": "CVE-2021-39623",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In doRead of SimpleDecodingSource.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-194105348",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-39623"
},
{
"cve": "CVE-2021-39626",
"cwe": {
"id": "CWE-610",
"name": "Externally Controlled Reference to a Resource in Another Sphere"
},
"notes": [
{
"category": "summary",
"text": "In onAttach of ConnectedDeviceDashboardFragment.java, there is a possible permission bypass due to a confused deputy. This could lead to local escalation of privilege in Bluetooth settings with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-194695497",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-39626"
},
{
"cve": "CVE-2021-39627",
"cwe": {
"id": "CWE-732",
"name": "Incorrect Permission Assignment for Critical Resource"
},
"notes": [
{
"category": "summary",
"text": "In sendLegacyVoicemailNotification of LegacyModeSmsHandler.java, there is a possible permissions bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-185126549",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-39627"
},
{
"cve": "CVE-2021-39629",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In phTmlNfc_Init and phTmlNfc_CleanUp of phTmlNfc.cc, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-197353344",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-39629"
},
{
"cve": "CVE-2021-39633",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "summary",
"text": "In gre_handle_offloads of ip_gre.c, there is a possible page fault due to an invalid memory access. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-150694665References: Upstream kernel",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-39633"
},
{
"cve": "CVE-2021-39634",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In fs/eventpoll.c, there is a possible use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-204450605References: Upstream kernel",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2021-39634"
},
{
"cve": "CVE-2022-20127",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"notes": [
{
"category": "summary",
"text": "In ce_t4t_data_cback of ce_t4t.cc, there is a possible out of bounds write due to a double free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-221862119",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20127"
},
{
"cve": "CVE-2022-20130",
"cwe": {
"id": "CWE-754",
"name": "Improper Check for Unusual or Exceptional Conditions"
},
"notes": [
{
"category": "summary",
"text": "In transportDec_OutOfBandConfig of tpdec_lib.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-224314979",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20130"
},
{
"cve": "CVE-2022-20227",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "In USB driver, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-216825460References: Upstream kernel",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20227"
},
{
"cve": "CVE-2022-20229",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In bta_hf_client_handle_cind_list_item of bta_hf_client_at.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-224536184",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20229"
},
{
"cve": "CVE-2022-20355",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "In get of PacProxyService.java, there is a possible system service crash due to improper input validation. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-219498290",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20355"
},
{
"cve": "CVE-2022-20411",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In avdt_msg_asmbl of avdt_msg.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-232023771",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20411"
},
{
"cve": "CVE-2022-20421",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In binder_inc_ref_for_node of binder.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-239630375References: Upstream kernel",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20421"
},
{
"cve": "CVE-2022-20422",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "summary",
"text": "In emulation_proc_handler of armv8_deprecated.c, there is a possible way to corrupt memory due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-237540956References: Upstream kernel",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20422"
},
{
"cve": "CVE-2022-20423",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "In rndis_set_response of rndis.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege if a malicious USB device is attached with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-239842288References: Upstream kernel",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20423"
},
{
"cve": "CVE-2022-20462",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In phNxpNciHal_write_unlocked of phNxpNciHal.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-230356196",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20462"
},
{
"cve": "CVE-2022-20466",
"cwe": {
"id": "CWE-1188",
"name": "Initialization of a Resource with an Insecure Default"
},
"notes": [
{
"category": "summary",
"text": "In applyKeyguardFlags of NotificationShadeWindowControllerImpl.java, there is a possible way to observe the user\u0027s password on a secondary display due to an insecure default value. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-179725730",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20466"
},
{
"cve": "CVE-2022-20468",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "In BNEP_ConnectResp of bnep_api.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-228450451",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20468"
},
{
"cve": "CVE-2022-20469",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In avct_lcb_msg_asmbl of avct_lcb_act.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-230867224",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20469"
},
{
"cve": "CVE-2022-20472",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "In toLanguageTag of LocaleListCache.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-239210579",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20472"
},
{
"cve": "CVE-2022-20473",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "In toLanguageTag of LocaleListCache.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-239267173",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20473"
},
{
"cve": "CVE-2022-20476",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "summary",
"text": "In setEnabledSetting of PackageManager.java, there is a possible way to get the device into an infinite reboot loop due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-240936919",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20476"
},
{
"cve": "CVE-2022-20483",
"cwe": {
"id": "CWE-191",
"name": "Integer Underflow (Wrap or Wraparound)"
},
"notes": [
{
"category": "summary",
"text": "In several functions that parse avrc response in avrc_pars_ct.cc and related files, there are possible out of bounds reads due to integer overflows. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-242459126",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20483"
},
{
"cve": "CVE-2022-20498",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "In fdt_path_offset_namelen of fdt_ro.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-246465319",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20498"
},
{
"cve": "CVE-2022-20500",
"cwe": {
"id": "CWE-755",
"name": "Improper Handling of Exceptional Conditions"
},
"notes": [
{
"category": "summary",
"text": "In loadFromXml of ShortcutPackage.java, there is a possible crash on boot due to an uncaught exception. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-246540168",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.2 or later version",
"product_ids": [
"1"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1"
]
}
],
"title": "CVE-2022-20500"
}
]
}
opensuse-su-2024:10721-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
dnsmasq-2.86-1.1 on GA media
Notes
Title of the patch
dnsmasq-2.86-1.1 on GA media
Description of the patch
These are all security issues fixed in the dnsmasq-2.86-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10721
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "dnsmasq-2.86-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the dnsmasq-2.86-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10721",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10721-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14491 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14491/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14492 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14492/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14493 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14493/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14494 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14494/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14495 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14495/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14496 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14496/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-15107 page",
"url": "https://www.suse.com/security/cve/CVE-2017-15107/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-14834 page",
"url": "https://www.suse.com/security/cve/CVE-2019-14834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25681 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25683 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25683/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25684 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25684/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25685 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25685/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-25686 page",
"url": "https://www.suse.com/security/cve/CVE-2020-25686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3448 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3448/"
}
],
"title": "dnsmasq-2.86-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10721-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.86-1.1.aarch64",
"product": {
"name": "dnsmasq-2.86-1.1.aarch64",
"product_id": "dnsmasq-2.86-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-2.86-1.1.aarch64",
"product": {
"name": "dnsmasq-utils-2.86-1.1.aarch64",
"product_id": "dnsmasq-utils-2.86-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.86-1.1.ppc64le",
"product": {
"name": "dnsmasq-2.86-1.1.ppc64le",
"product_id": "dnsmasq-2.86-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-2.86-1.1.ppc64le",
"product": {
"name": "dnsmasq-utils-2.86-1.1.ppc64le",
"product_id": "dnsmasq-utils-2.86-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.86-1.1.s390x",
"product": {
"name": "dnsmasq-2.86-1.1.s390x",
"product_id": "dnsmasq-2.86-1.1.s390x"
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-2.86-1.1.s390x",
"product": {
"name": "dnsmasq-utils-2.86-1.1.s390x",
"product_id": "dnsmasq-utils-2.86-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "dnsmasq-2.86-1.1.x86_64",
"product": {
"name": "dnsmasq-2.86-1.1.x86_64",
"product_id": "dnsmasq-2.86-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "dnsmasq-utils-2.86-1.1.x86_64",
"product": {
"name": "dnsmasq-utils-2.86-1.1.x86_64",
"product_id": "dnsmasq-utils-2.86-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.86-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64"
},
"product_reference": "dnsmasq-2.86-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.86-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le"
},
"product_reference": "dnsmasq-2.86-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.86-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x"
},
"product_reference": "dnsmasq-2.86-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-2.86-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64"
},
"product_reference": "dnsmasq-2.86-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-2.86-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64"
},
"product_reference": "dnsmasq-utils-2.86-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-2.86-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le"
},
"product_reference": "dnsmasq-utils-2.86-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-2.86-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x"
},
"product_reference": "dnsmasq-utils-2.86-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dnsmasq-utils-2.86-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
},
"product_reference": "dnsmasq-utils-2.86-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-14491",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14491"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14491",
"url": "https://www.suse.com/security/cve/CVE-2017-14491"
},
{
"category": "external",
"summary": "SUSE Bug 1060354 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060354"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "external",
"summary": "SUSE Bug 1063832 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1063832"
},
{
"category": "external",
"summary": "SUSE Bug 1143944 for CVE-2017-14491",
"url": "https://bugzilla.suse.com/1143944"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-14491"
},
{
"cve": "CVE-2017-14492",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14492"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted IPv6 router advertisement request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14492",
"url": "https://www.suse.com/security/cve/CVE-2017-14492"
},
{
"category": "external",
"summary": "SUSE Bug 1060355 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060355"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "external",
"summary": "SUSE Bug 1063832 for CVE-2017-14492",
"url": "https://bugzilla.suse.com/1063832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-14492"
},
{
"cve": "CVE-2017-14493",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14493"
}
],
"notes": [
{
"category": "general",
"text": "Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DHCPv6 request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14493",
"url": "https://www.suse.com/security/cve/CVE-2017-14493"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1060364"
},
{
"category": "external",
"summary": "SUSE Bug 1063832 for CVE-2017-14493",
"url": "https://bugzilla.suse.com/1063832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-14493"
},
{
"cve": "CVE-2017-14494",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14494"
}
],
"notes": [
{
"category": "general",
"text": "dnsmasq before 2.78, when configured as a relay, allows remote attackers to obtain sensitive memory information via vectors involving handling DHCPv6 forwarded requests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14494",
"url": "https://www.suse.com/security/cve/CVE-2017-14494"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14494",
"url": "https://bugzilla.suse.com/1060364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-14494"
},
{
"cve": "CVE-2017-14495",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14495"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in dnsmasq before 2.78, when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service (memory consumption) via vectors involving DNS response creation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14495",
"url": "https://www.suse.com/security/cve/CVE-2017-14495"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14495",
"url": "https://bugzilla.suse.com/1060364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-14495"
},
{
"cve": "CVE-2017-14496",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14496"
}
],
"notes": [
{
"category": "general",
"text": "Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause a denial of service via a crafted DNS request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14496",
"url": "https://www.suse.com/security/cve/CVE-2017-14496"
},
{
"category": "external",
"summary": "SUSE Bug 1060360 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060360"
},
{
"category": "external",
"summary": "SUSE Bug 1060361 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060361"
},
{
"category": "external",
"summary": "SUSE Bug 1060362 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060362"
},
{
"category": "external",
"summary": "SUSE Bug 1060364 for CVE-2017-14496",
"url": "https://bugzilla.suse.com/1060364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-14496"
},
{
"cve": "CVE-2017-15107",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-15107"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in the implementation of DNSSEC in Dnsmasq up to and including 2.78. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames that actually exist.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-15107",
"url": "https://www.suse.com/security/cve/CVE-2017-15107"
},
{
"category": "external",
"summary": "SUSE Bug 1076958 for CVE-2017-15107",
"url": "https://bugzilla.suse.com/1076958"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-15107"
},
{
"cve": "CVE-2019-14834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-14834"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in dnsmasq before version 2.81, where the memory leak allows remote attackers to cause a denial of service (memory consumption) via vectors involving DHCP response creation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-14834",
"url": "https://www.suse.com/security/cve/CVE-2019-14834"
},
{
"category": "external",
"summary": "SUSE Bug 1154849 for CVE-2019-14834",
"url": "https://bugzilla.suse.com/1154849"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-14834"
},
{
"cve": "CVE-2020-25681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25681"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in the way RRSets are sorted before validating with DNSSEC data. An attacker on the network, who can forge DNS replies such as that they are accepted as valid, could use this flaw to cause a buffer overflow with arbitrary data in a heap memory segment, possibly executing code on the machine. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25681",
"url": "https://www.suse.com/security/cve/CVE-2020-25681"
},
{
"category": "external",
"summary": "SUSE Bug 1177077 for CVE-2020-25681",
"url": "https://bugzilla.suse.com/1177077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-25681"
},
{
"cve": "CVE-2020-25683",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25683"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. A remote attacker, who can create valid DNS replies, could use this flaw to cause an overflow in a heap-allocated memory. This flaw is caused by the lack of length checks in rfc1035.c:extract_name(), which could be abused to make the code execute memcpy() with a negative size in get_rdata() and cause a crash in dnsmasq, resulting in a denial of service. The highest threat from this vulnerability is to system availability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25683",
"url": "https://www.suse.com/security/cve/CVE-2020-25683"
},
{
"category": "external",
"summary": "SUSE Bug 1177077 for CVE-2020-25683",
"url": "https://bugzilla.suse.com/1177077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-25683"
},
{
"cve": "CVE-2020-25684",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25684"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query, dnsmasq checks in the forward.c:reply_query() if the reply destination address/port is used by the pending forwarded queries. However, it does not use the address/port to retrieve the exact forwarded query, substantially reducing the number of attempts an attacker on the network would have to perform to forge a reply and get it accepted by dnsmasq. This issue contrasts with RFC5452, which specifies a query\u0027s attributes that all must be used to match a reply. This flaw allows an attacker to perform a DNS Cache Poisoning attack. If chained with CVE-2020-25685 or CVE-2020-25686, the attack complexity of a successful attack is reduced. The highest threat from this vulnerability is to data integrity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25684",
"url": "https://www.suse.com/security/cve/CVE-2020-25684"
},
{
"category": "external",
"summary": "SUSE Bug 1177077 for CVE-2020-25684",
"url": "https://bugzilla.suse.com/1177077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-25684"
},
{
"cve": "CVE-2020-25685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25685"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query, dnsmasq checks in forward.c:reply_query(), which is the forwarded query that matches the reply, by only using a weak hash of the query name. Due to the weak hash (CRC32 when dnsmasq is compiled without DNSSEC, SHA-1 when it is) this flaw allows an off-path attacker to find several different domains all having the same hash, substantially reducing the number of attempts they would have to perform to forge a reply and get it accepted by dnsmasq. This is in contrast with RFC5452, which specifies that the query name is one of the attributes of a query that must be used to match a reply. This flaw could be abused to perform a DNS Cache Poisoning attack. If chained with CVE-2020-25684 the attack complexity of a successful attack is reduced. The highest threat from this vulnerability is to data integrity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25685",
"url": "https://www.suse.com/security/cve/CVE-2020-25685"
},
{
"category": "external",
"summary": "SUSE Bug 1177077 for CVE-2020-25685",
"url": "https://bugzilla.suse.com/1177077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-25685"
},
{
"cve": "CVE-2020-25686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-25686"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in dnsmasq before version 2.83. When receiving a query, dnsmasq does not check for an existing pending request for the same name and forwards a new request. By default, a maximum of 150 pending queries can be sent to upstream servers, so there can be at most 150 queries for the same name. This flaw allows an off-path attacker on the network to substantially reduce the number of attempts that it would have to perform to forge a reply and have it accepted by dnsmasq. This issue is mentioned in the \"Birthday Attacks\" section of RFC5452. If chained with CVE-2020-25684, the attack complexity of a successful attack is reduced. The highest threat from this vulnerability is to data integrity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-25686",
"url": "https://www.suse.com/security/cve/CVE-2020-25686"
},
{
"category": "external",
"summary": "SUSE Bug 1177077 for CVE-2020-25686",
"url": "https://bugzilla.suse.com/1177077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-25686"
},
{
"cve": "CVE-2021-3448",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3448"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in dnsmasq in versions before 2.85. When configured to use a specific server for a given network interface, dnsmasq uses a fixed port while forwarding queries. An attacker on the network, able to find the outgoing port used by dnsmasq, only needs to guess the random transmission ID to forge a reply and get it accepted by dnsmasq. This flaw makes a DNS Cache Poisoning attack much easier. The highest threat from this vulnerability is to data integrity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3448",
"url": "https://www.suse.com/security/cve/CVE-2021-3448"
},
{
"category": "external",
"summary": "SUSE Bug 1183709 for CVE-2021-3448",
"url": "https://bugzilla.suse.com/1183709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-2.86-1.1.x86_64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.aarch64",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.ppc64le",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.s390x",
"openSUSE Tumbleweed:dnsmasq-utils-2.86-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2021-3448"
}
]
}
gsd-2017-14491
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2017-14491",
"description": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.",
"id": "GSD-2017-14491",
"references": [
"https://www.suse.com/security/cve/CVE-2017-14491.html",
"https://www.debian.org/security/2017/dsa-3989",
"https://access.redhat.com/errata/RHSA-2017:2841",
"https://access.redhat.com/errata/RHSA-2017:2840",
"https://access.redhat.com/errata/RHSA-2017:2839",
"https://access.redhat.com/errata/RHSA-2017:2838",
"https://access.redhat.com/errata/RHSA-2017:2837",
"https://access.redhat.com/errata/RHSA-2017:2836",
"https://ubuntu.com/security/CVE-2017-14491",
"https://advisories.mageia.org/CVE-2017-14491.html",
"https://security.archlinux.org/CVE-2017-14491",
"https://alas.aws.amazon.com/cve/html/CVE-2017-14491.html",
"https://linux.oracle.com/cve/CVE-2017-14491.html",
"https://packetstormsecurity.com/files/cve/CVE-2017-14491"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2017-14491"
],
"details": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.",
"id": "GSD-2017-14491",
"modified": "2023-12-13T01:21:12.964743Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-14491",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "1039474",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1039474"
},
{
"name": "https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq",
"refsource": "CONFIRM",
"url": "https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq"
},
{
"name": "DSA-3989",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2017/dsa-3989"
},
{
"name": "https://access.redhat.com/security/vulnerabilities/3199382",
"refsource": "CONFIRM",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"name": "101085",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/101085"
},
{
"name": "USN-3430-1",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-3430-1"
},
{
"name": "http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=0549c73b7ea6b22a3c49beb4d432f185a81efcbc",
"refsource": "CONFIRM",
"url": "http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=0549c73b7ea6b22a3c49beb4d432f185a81efcbc"
},
{
"name": "101977",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/101977"
},
{
"name": "RHSA-2017:2838",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:2838"
},
{
"name": "VU#973527",
"refsource": "CERT-VN",
"url": "https://www.kb.cert.org/vuls/id/973527"
},
{
"name": "GLSA-201710-27",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201710-27"
},
{
"name": "RHSA-2017:2840",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:2840"
},
{
"name": "USN-3430-2",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-3430-2"
},
{
"name": "RHSA-2017:2839",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:2839"
},
{
"name": "[dnsmasq-discuss] 20171002 Announce: dnsmasq-2.78.",
"refsource": "MLIST",
"url": "https://www.mail-archive.com/dnsmasq-discuss@lists.thekelleys.org.uk/msg11665.html"
},
{
"name": "RHSA-2017:2836",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:2836"
},
{
"name": "http://nvidia.custhelp.com/app/answers/detail/a_id/4561",
"refsource": "CONFIRM",
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4561"
},
{
"name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt",
"refsource": "CONFIRM",
"url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt"
},
{
"name": "RHSA-2017:2837",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:2837"
},
{
"name": "42941",
"refsource": "EXPLOIT-DB",
"url": "https://www.exploit-db.com/exploits/42941/"
},
{
"name": "http://thekelleys.org.uk/dnsmasq/CHANGELOG",
"refsource": "CONFIRM",
"url": "http://thekelleys.org.uk/dnsmasq/CHANGELOG"
},
{
"name": "RHSA-2017:2841",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:2841"
},
{
"name": "http://nvidia.custhelp.com/app/answers/detail/a_id/4560",
"refsource": "CONFIRM",
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4560"
},
{
"name": "openSUSE-SU-2017:2633",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00006.html"
},
{
"name": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"refsource": "MISC",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
},
{
"name": "[dnsmasq-discuss] 20171002 IMPORTANT SECURITY INFORMATION.",
"refsource": "MLIST",
"url": "https://www.mail-archive.com/dnsmasq-discuss@lists.thekelleys.org.uk/msg11664.html"
},
{
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf",
"refsource": "CONFIRM",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf"
},
{
"name": "FEDORA-2017-515264ae24",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD/"
},
{
"name": "FEDORA-2017-24f067299e",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV/"
},
{
"name": "USN-3430-3",
"refsource": "UBUNTU",
"url": "http://www.ubuntu.com/usn/USN-3430-3"
},
{
"name": "http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html",
"refsource": "MISC",
"url": "http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html"
},
{
"name": "SUSE-SU-2017:2619",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00005.html"
},
{
"name": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/",
"refsource": "CONFIRM",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/"
},
{
"name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en",
"refsource": "CONFIRM",
"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en"
},
{
"name": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449",
"refsource": "CONFIRM",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449"
},
{
"name": "FEDORA-2017-7106a157f5",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB/"
},
{
"name": "SUSE-SU-2017:2616",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00003.html"
},
{
"name": "SUSE-SU-2017:2617",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00004.html"
},
{
"name": "DSA-3989",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-3989"
},
{
"name": "https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30",
"refsource": "MISC",
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:thekelleys:dnsmasq:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.77",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:17.04:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:7.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:42.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:suse:linux_enterprise_point_of_sale:11:sp3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:ltss:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_server:11:sp4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_server:12:*:*:*:ltss:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:nvidia:linux_for_tegra:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "r21.6",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:nvidia:jetson_tk1:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:nvidia:linux_for_tegra:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "r24.2.2",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:nvidia:jetson_tx1:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:nvidia:geforce_experience:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "3.10.0.55",
"versionStartIncluding": "3.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:huawei:honor_v9_play_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "jimmy-al00ac00b135",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:huawei:honor_v9_play:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "4.15",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.16.13m",
"versionStartIncluding": "4.16",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.17.8m",
"versionStartIncluding": "4.17",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:arista:eos:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "4.18.4.2f",
"versionStartIncluding": "4.18",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:ruggedcom_rm1224_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "5.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:ruggedcom_rm1224:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:scalance_m-800_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "5.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:scalance_m-800:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:scalance_s615_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "5.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:scalance_s615:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:scalance_w1750d_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "6.5.1.5",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:scalance_w1750d:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "6.3.1.25",
"versionStartIncluding": "6.3.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "6.4.4.16",
"versionStartIncluding": "6.4.4.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "6.5.1.9",
"versionStartIncluding": "6.5.0.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "6.5.3.3",
"versionStartIncluding": "6.5.3.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "6.5.4.2",
"versionStartIncluding": "6.5.4.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "8.1.0.4",
"versionStartIncluding": "8.1.0.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:synology:diskstation_manager:5.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:synology:diskstation_manager:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:synology:diskstation_manager:6.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:synology:router_manager:1.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-14491"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-787"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[dnsmasq-discuss] 20171002 Announce: dnsmasq-2.78.",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://www.mail-archive.com/dnsmasq-discuss@lists.thekelleys.org.uk/msg11665.html"
},
{
"name": "[dnsmasq-discuss] 20171002 IMPORTANT SECURITY INFORMATION.",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://www.mail-archive.com/dnsmasq-discuss@lists.thekelleys.org.uk/msg11664.html"
},
{
"name": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html",
"refsource": "MISC",
"tags": [
"Third Party Advisory"
],
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
},
{
"name": "1039474",
"refsource": "SECTRACK",
"tags": [
"Broken Link"
],
"url": "http://www.securitytracker.com/id/1039474"
},
{
"name": "http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=0549c73b7ea6b22a3c49beb4d432f185a81efcbc",
"refsource": "CONFIRM",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=0549c73b7ea6b22a3c49beb4d432f185a81efcbc"
},
{
"name": "http://thekelleys.org.uk/dnsmasq/CHANGELOG",
"refsource": "CONFIRM",
"tags": [
"Release Notes",
"Vendor Advisory"
],
"url": "http://thekelleys.org.uk/dnsmasq/CHANGELOG"
},
{
"name": "42941",
"refsource": "EXPLOIT-DB",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/42941/"
},
{
"name": "101085",
"refsource": "BID",
"tags": [
"Broken Link"
],
"url": "http://www.securityfocus.com/bid/101085"
},
{
"name": "VU#973527",
"refsource": "CERT-VN",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "https://www.kb.cert.org/vuls/id/973527"
},
{
"name": "https://access.redhat.com/security/vulnerabilities/3199382",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"name": "RHSA-2017:2841",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2841"
},
{
"name": "RHSA-2017:2840",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2840"
},
{
"name": "RHSA-2017:2839",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2839"
},
{
"name": "RHSA-2017:2838",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2838"
},
{
"name": "RHSA-2017:2837",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2837"
},
{
"name": "RHSA-2017:2836",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2836"
},
{
"name": "USN-3430-2",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-3430-2"
},
{
"name": "USN-3430-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-3430-1"
},
{
"name": "DSA-3989",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "http://www.debian.org/security/2017/dsa-3989"
},
{
"name": "openSUSE-SU-2017:2633",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00006.html"
},
{
"name": "http://nvidia.custhelp.com/app/answers/detail/a_id/4561",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4561"
},
{
"name": "GLSA-201710-27",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/201710-27"
},
{
"name": "101977",
"refsource": "BID",
"tags": [
"Broken Link"
],
"url": "http://www.securityfocus.com/bid/101977"
},
{
"name": "https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq"
},
{
"name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt"
},
{
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf"
},
{
"name": "http://nvidia.custhelp.com/app/answers/detail/a_id/4560",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4560"
},
{
"name": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449/"
},
{
"name": "USN-3430-3",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "http://www.ubuntu.com/usn/USN-3430-3"
},
{
"name": "FEDORA-2017-24f067299e",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV/"
},
{
"name": "SUSE-SU-2017:2619",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00005.html"
},
{
"name": "DSA-3989",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2017/dsa-3989"
},
{
"name": "SUSE-SU-2017:2617",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00004.html"
},
{
"name": "FEDORA-2017-515264ae24",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD/"
},
{
"name": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449"
},
{
"name": "http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html",
"refsource": "MISC",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html"
},
{
"name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en"
},
{
"name": "FEDORA-2017-7106a157f5",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB/"
},
{
"name": "https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30",
"refsource": "MISC",
"tags": [
"Mitigation",
"Third Party Advisory"
],
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30"
},
{
"name": "SUSE-SU-2017:2616",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00003.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
},
"lastModifiedDate": "2022-04-22T20:39Z",
"publishedDate": "2017-10-04T01:29Z"
}
}
}
ghsa-m4px-ph3f-7964
Vulnerability from github
Published
2022-04-30 00:02
Modified
2025-01-14 21:31
Severity ?
VLAI Severity ?
Details
Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.
{
"affected": [],
"aliases": [
"CVE-2017-14491"
],
"database_specific": {
"cwe_ids": [
"CWE-787"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2017-10-04T01:29:00Z",
"severity": "CRITICAL"
},
"details": "Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.",
"id": "GHSA-m4px-ph3f-7964",
"modified": "2025-01-14T21:31:36Z",
"published": "2022-04-30T00:02:19Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14491"
},
{
"type": "WEB",
"url": "https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq"
},
{
"type": "WEB",
"url": "https://www.mail-archive.com/dnsmasq-discuss@lists.thekelleys.org.uk/msg11665.html"
},
{
"type": "WEB",
"url": "https://www.mail-archive.com/dnsmasq-discuss@lists.thekelleys.org.uk/msg11664.html"
},
{
"type": "WEB",
"url": "https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11665.html"
},
{
"type": "WEB",
"url": "https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11664.html"
},
{
"type": "WEB",
"url": "https://www.kb.cert.org/vuls/id/973527"
},
{
"type": "WEB",
"url": "https://www.exploit-db.com/exploits/42941"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2017/dsa-3989"
},
{
"type": "WEB",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2017-449"
},
{
"type": "WEB",
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/3577-security-advisory-30"
},
{
"type": "WEB",
"url": "https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/201710-27"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YXRZ2W6TV6NLUJC5NOFBSG6PZSMDTYPV"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5MMPCJOYPPL4B5RBY4U425PWG7EETDTD"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/527KNN34RN2SB6MBJG7CKSEBWYE3TJEB"
},
{
"type": "WEB",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/vulnerabilities/3199382"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2017:2841"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2017:2840"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2017:2839"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2017:2838"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2017:2837"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2017:2836"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00003.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00004.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00005.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00006.html"
},
{
"type": "WEB",
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4560"
},
{
"type": "WEB",
"url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4561"
},
{
"type": "WEB",
"url": "http://packetstormsecurity.com/files/144480/Dnsmasq-2-Byte-Heap-Based-Overflow.html"
},
{
"type": "WEB",
"url": "http://thekelleys.org.uk/dnsmasq/CHANGELOG"
},
{
"type": "WEB",
"url": "http://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=0549c73b7ea6b22a3c49beb4d432f185a81efcbc"
},
{
"type": "WEB",
"url": "http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=0549c73b7ea6b22a3c49beb4d432f185a81efcbc"
},
{
"type": "WEB",
"url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-005.txt"
},
{
"type": "WEB",
"url": "http://www.debian.org/security/2017/dsa-3989"
},
{
"type": "WEB",
"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171103-01-dnsmasq-en"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/101085"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/101977"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1039474"
},
{
"type": "WEB",
"url": "http://www.ubuntu.com/usn/USN-3430-1"
},
{
"type": "WEB",
"url": "http://www.ubuntu.com/usn/USN-3430-2"
},
{
"type": "WEB",
"url": "http://www.ubuntu.com/usn/USN-3430-3"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…