Off-by-one buffer overflow in Dnsmasq before 2.21 may allow attackers to execute arbitrary code via the DHCP lease file.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| dnsmasq | dnsmasq | 2.19 |
| dnsmasq | dnsmasq | 2.15 |
| dnsmasq | dnsmasq | 2.16 |
| dnsmasq | dnsmasq | 2.17 |
| dnsmasq | dnsmasq | 2.14 |
| dnsmasq | dnsmasq | 2.18 |
| dnsmasq | dnsmasq | 2.20 |
Dnsmasq 2.29 allows remote attackers to cause a denial of service (application crash) via a DHCP client broadcast reply request.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| dnsmasq | dnsmasq | 2.29 |