Gitiles
Code Review Sign In
gerrit.nordix.org / thekelleys / dnsmasq / 51eadb692a5123b9838e5a68ecace3ac579a3a45
commit51eadb692a5123b9838e5a68ecace3ac579a3a45[log] [tgz]
authorSimon Kelley <simon@thekelleys.org.uk>Mon Sep 25 20:16:50 2017 +0100
committerSimon Kelley <simon@thekelleys.org.uk>Mon Sep 25 20:16:50 2017 +0100
tree2e3b98b3753245163d12055de2b9212703c62cd4
parent897c113fda0886a28a986cc6ba17bb93bd6cb1c7 [diff]
Security fix, CVE-2017-14495, OOM in DNS response creation.

Fix out-of-memory Dos vulnerability. An attacker which can
send malicious DNS queries to dnsmasq can trigger memory
allocations in the add_pseudoheader function
The allocated memory is never freed which leads to a DoS
through memory exhaustion. dnsmasq is vulnerable only
if one of the following option is specified:
--add-mac, --add-cpe-id or --add-subnet.
2 files changed
tree: 2e3b98b3753245163d12055de2b9212703c62cd4
  1. bld/
  2. contrib/
  3. dbus/
  4. debian/
  5. logo/
  6. man/
  7. po/
  8. src/
  9. .gitattributes
  10. .gitignore
  11. Android.mk
  12. CHANGELOG
  13. CHANGELOG.archive
  14. COPYING
  15. COPYING-v3
  16. dnsmasq.conf.example
  17. doc.html
  18. FAQ
  19. Makefile
  20. setup.html
  21. trust-anchors.conf
  22. VERSION