PublicDateAtUSN: 2017-10-02
Candidate: CVE-2017-14496
CRD: 2017-10-02
PublicDate: 2017-10-03 01:29:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14496
 https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.html
 https://ubuntu.com/security/notices/USN-3430-1
 https://ubuntu.com/security/notices/USN-3430-2
Description:
 Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 ,
 when the --add-mac, --add-cpe-id or --add-subnet option is specified,
 allows remote attackers to cause a denial of service via a crafted DNS
 request.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: medium
Discovered-by: Felix Wilhelm, Fermin J. Serna, Gabriel Campana and Kevin Hamacher
Assigned-to: mdeslaur
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]

Patches_dnsmasq:
upstream_dnsmasq: needs-triage
precise/esm_dnsmasq: released (2.59-4ubuntu0.3)
trusty_dnsmasq: released (2.68-1ubuntu0.2)
trusty/esm_dnsmasq: released (2.68-1ubuntu0.2)
vivid/ubuntu-core_dnsmasq: DNE
xenial_dnsmasq: released (2.75-1ubuntu0.16.04.3)
esm-infra/xenial_dnsmasq: released (2.75-1ubuntu0.16.04.3)
zesty_dnsmasq: released (2.76-5ubuntu0.1)
devel_dnsmasq: not-affected (2.78-1)