CVE-2017-13704 — HIGH (7.5)

Q: How severe is CVE-2017-13704?

CVE-2017-13704 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2017-13704?

Check the references section above for vendor advisories and patch information. Affected products include: Canonical Ubuntu Linux, Debian Debian Linux, Fedoraproject Fedora, Novell Leap, Redhat Enterprise Linux Desktop.

Vulnerability Description

In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xffffffff zero's (0xffffffffffffffff in 64 bit platforms), making dnsmasq crash.

CVSS Score

7.5

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Canonical	Ubuntu Linux	14.04
Debian	Debian Linux	7.0
Fedoraproject	Fedora	27
Novell	Leap	42.2
Redhat	Enterprise Linux Desktop	7.0
Redhat	Enterprise Linux Server	7.0
Redhat	Enterprise Linux Workstation	7.0
Thekelleys	Dnsmasq	<= 2.77

Related Weaknesses (CWE)

CWE-20

References

http://thekelleys.org.uk/dnsmasq/CHANGELOGRelease NotesVendor Advisory
http://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=63437ffbb58837b214
http://www.securityfocus.com/bid/101085Third Party AdvisoryVDB Entry
http://www.securityfocus.com/bid/101977
http://www.securitytracker.com/id/1039474Third Party AdvisoryVDB Entry
https://access.redhat.com/security/vulnerabilities/3199382Issue TrackingThird Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-689071.pdf
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
https://security.googleblog.com/2017/10/behind-masq-yet-more-dns-and-dhcp.htmlThird Party Advisory
https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11664.
https://www.mail-archive.com/dnsmasq-discuss%40lists.thekelleys.org.uk/msg11665.
https://www.synology.com/support/security/Synology_SA_17_59_Dnsmasq
http://thekelleys.org.uk/dnsmasq/CHANGELOGRelease NotesVendor Advisory
http://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=63437ffbb58837b214
http://www.securityfocus.com/bid/101085Third Party AdvisoryVDB Entry

FAQ

What is CVE-2017-13704?

CVE-2017-13704 is a vulnerability with a CVSS score of 7.5 (HIGH). In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xf...

How severe is CVE-2017-13704?

CVE-2017-13704 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-13704?

Check the references section above for vendor advisories and patch information. Affected products include: Canonical Ubuntu Linux, Debian Debian Linux, Fedoraproject Fedora, Novell Leap, Redhat Enterprise Linux Desktop.