CVE-2020-25687
Description
A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. This flaw allows a remote attacker, who can create valid DNS replies, to cause an overflow in a heap-allocated memory. This flaw is caused by the lack of length checks in rfc1035.c:extract_name(), which could be abused to make the code execute memcpy() with a negative size in sort_rrset() and cause a crash in dnsmasq, resulting in a denial of service. The highest threat from this vulnerability is to system availability.
Risk Information
Base Score
5.9
MODERATE
Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
23.25
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq_2.79-1ubuntu0.2_all.deb | Linux |
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq_2.82-1ubuntu1.1_all.deb | Linux |
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq_2.80-1.1ubuntu1.2_all.deb | Linux |
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq_2.75-1ubuntu0.16.04.7_all.deb | Linux |
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq-base_2.79-1ubuntu0.2_i386.deb | Linux |
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq-base_2.79-1ubuntu0.2_amd64.deb | Linux |
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq-base_2.82-1ubuntu1.1_amd64.deb | Linux |
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq-base_2.80-1.1ubuntu1.2_amd64.deb | Linux |
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq-base_2.75-1ubuntu0.16.04.7_i386.deb | Linux |
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq-base_2.75-1ubuntu0.16.04.7_amd64.deb | Linux |
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq-utils_2.79-1ubuntu0.2_i386.deb | Linux |
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq-utils_2.79-1ubuntu0.2_amd64.deb | Linux |
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq-utils_2.82-1ubuntu1.1_amd64.deb | Linux |
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq-utils_2.80-1.1ubuntu1.2_amd64.deb | Linux |
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq-utils_2.75-1ubuntu0.16.04.7_i386.deb | Linux |
| Small caching DNS proxy and DHCP/TFTP server (USN-4698-1) dnsmasq-utils_2.75-1ubuntu0.16.04.7_amd64.deb | Linux |
| (RHSA-2021:0150) dnsmasq security update dnsmasq-2.79-13.el8_3.1.x86_64.rpm | Linux |
| (RHSA-2021:0150) dnsmasq security update dnsmasq-debugsource-2.79-13.el8_3.1.x86_64.rpm | Linux |
| (RHSA-2021:0150) dnsmasq security update dnsmasq-utils-2.79-13.el8_3.1.x86_64.rpm | Linux |
| dnsmasq security update(DSA-4844-1) dnsmasq_2.80-1+deb10u1_all.deb | Linux |
| SUSE-SU-2021:0166-1(SUSE Linux Enterprise Server 12-SP5 ) dnsmasq-2.78-18.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:0166-1(SUSE Linux Enterprise Server 12-SP5 ) dnsmasq-debuginfo-2.78-18.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:0166-1(SUSE Linux Enterprise Server 12-SP5 ) dnsmasq-debugsource-2.78-18.15.1.x86_64.rpm | Linux |
| Multiple Vulnerabilities in dnsmasq DNS Forwarder Affecting Cisco Products: January 2021 For Cisco Aironet 1850 Series Access Points | NCM |
| Multiple Vulnerabilities in dnsmasq DNS Forwarder Affecting Cisco Products: January 2021 For Cisco IP Phone 8800 Series | NCM |
| Multiple Vulnerabilities in dnsmasq DNS Forwarder Affecting Cisco Products: January 2021 For Cisco TelePresence Video Communication Server (VCS) | NCM |
| Multiple Vulnerabilities in dnsmasq DNS Forwarder Affecting Cisco Products: January 2021 For Cisco Nexus 9000 Series Switches | NCM |
| CVE-2020-25687 | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-1705928 | Security Update for Cisco Aironet 1850 Series Access Points 8.3(15.136) |
| PATCH-1705974 | Security Update for Cisco IP Phone 8800 Series 11.7(1)SC2 |
| PATCH-1705194 | Security Update for Cisco TelePresence Video Communication Server (VCS) X14.0 |
| PATCH-1706000 | Security Update for Cisco Nexus 9000 Series Switches 15.1(4c) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234