CVE-2017-13704

HIGH
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xffffffff zero's (0xffffffffffffffff in 64 bit platforms), making dnsmasq crash.

References

http://thekelleys.org.uk/dnsmasq/CHANGELOG

http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=63437ffbb58837b214b4b92cb1c54bc5f3279928

http://www.securityfocus.com/bid/101085

http://www.securityfocus.com/bid/101977

http://www.securitytracker.com/id/1039474

https://access.redhat.com/security/vulnerabilities/3199382

https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf

https://lists.fedoraproject.org/archives/list/[email protected]/message/4TK6DWC53WSU6633EVZL7H4PCWBYHMHK/

https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html

https://www.mail-archive.com/[email protected]/msg11664.html

https://www.mail-archive.com/[email protected]/msg11665.html

https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq

Details

Source: MITRE

Published: 2017-10-03

Updated: 2018-05-11

Type: CWE-20

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 3.9

Severity: HIGH

Tenable Plugins

View all (7 total)

IDNameProductFamilySeverity
123860EulerOS Virtualization 2.5.3 : dnsmasq (EulerOS-SA-2019-1174)NessusHuawei Local Security Checks
high
111887Photon OS 1.0: Binutils / C / Dnsmasq / Git / Gnutls / Krb5 / Linux / Mercurial / Mesos / Nginx PHSA-2017-0038 (deprecated)NessusPhotonOS Local Security Checks
high
109037pfSense < 2.3.5 Multiple Vulnerabilities (KRACK)NessusFirewalls
critical
105837Fedora 27 : dnsmasq (2017-274d763ed8)NessusFedora Local Security Checks
high
103647dnsmasq < 2.78 Multiple Remote VulnerabilitiesNessusDNS
critical
103620FreeBSD : dnsmasq -- multiple vulnerabilities (b77b5646-a778-11e7-ac58-b499baebfeaf)NessusFreeBSD Local Security Checks
critical
103599Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : dnsmasq (SSA:2017-275-01)NessusSlackware Local Security Checks
critical