FEDORA-2017-24f067299e

security update in Fedora 26 for dnsmasq

Status: stable 2 years ago

CVE-2017-14491 CVE-2017-14492 CVE-2017-14493 CVE-2017-14494 CVE-2017-14495 CVE-2017-14496

How to install

sudo dnf upgrade --advisory=FEDORA-2017-24f067299e

Comments 10

This update has been submitted for testing by pemensik.

pemensik edited this update.

pemensik edited this update.

New build(s):

  • dnsmasq-2.76-5.fc26

Removed build(s):

  • dnsmasq-2.76-4.fc26

Karma has been reset.

karma: +1 critpath: +1 #1495409: +1 #1495410: +1 #1495411: +1 #1495412: +1 #1495415: +1 #1495416: +1 #1497691: +1
karma: +1 critpath: +1

This update has been pushed to testing.

I'm unable to test the CVE specifics, but the basic functionality is fine in my use case: virtual machines.

karma: +1 critpath: +1

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
urgent
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago
modified 2 years ago

Related Bugs 7

0+1 #1495409 CVE-2017-14491 dnsmasq: heap overflow in the code responsible for building DNS replies
0+1 #1495410 CVE-2017-14492 dnsmasq: heap overflow in the IPv6 router advertisement code
0+1 #1495411 CVE-2017-14493 dnsmasq: stack buffer overflow in the DHCPv6 code
0+1 #1495412 CVE-2017-14494 dnsmasq: information leak in the DHCPv6 relay code
0+1 #1495415 CVE-2017-14495 dnsmasq: memory exhaustion vulnerability in the EDNS0 code
0+1 #1495416 CVE-2017-14496 dnsmasq: integer underflow leading to buffer over-read in the EDNS0 code
0+1 #1497691 CVE-2017-14491 CVE-2017-14492 CVE-2017-14493 CVE-2017-14494 CVE-2017-14495 CVE-2017-14496 dnsmasq: various flaws [fedora-all]

Automated Test Results