CVE-2017-14496

Priority
Medium
Description
Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 ,
when the --add-mac, --add-cpe-id or --add-subnet option is specified,
allows remote attackers to cause a denial of service via a crafted DNS
request.
References
Assigned-to
mdeslaur
Package
Upstream:needs-triage
Ubuntu 17.10 (Artful Aardvark):not-affected (2.78-1)
Ubuntu 12.04 ESM (Precise Pangolin):released (2.59-4ubuntu0.3)
Ubuntu 14.04 LTS (Trusty Tahr):released (2.68-1ubuntu0.2)
Ubuntu Core 15.04:DNE
Ubuntu 16.04 LTS (Xenial Xerus):released (2.75-1ubuntu0.16.04.3)
Ubuntu 17.04 (Zesty Zapus):released (2.76-5ubuntu0.1)
More Information

Updated: 2017-10-06 13:14:35 UTC (commit 13466)