Computer Security
[EN] securityvulns.ru no-pyccku


dnsmasq uninitialized memory dereference
updated since 04.05.2015
Published:05.05.2015
Source:
SecurityVulns ID:14423
Type:remote
Threat Level:
5/10
Description:Uninitilized memory dereference on DNS request parsing.
Affected:DNSMASQ : dnsmasq 2.73
CVE:CVE-2015-3294 (The tcp_request function in Dnsmasq before 2.73rc4 does not properly handle the return value of the setup_reply function, which allows remote attackers to read process memory and cause a denial of service (out-of-bounds read and crash) via a malformed DNS request.)
Original documentdocumentn.sampanis_(at)_obrela.com, Dnsmasq 2.72 Unchecked returned value (05.05.2015)
 documentUBUNTU, [USN-2593-1] Dnsmasq vulnerability (04.05.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod