FEDORA-2017-24f067299e

security update in Fedora 26 for dnsmasq

Status: stable 2 years ago

CVE-2017-14491 CVE-2017-14492 CVE-2017-14493 CVE-2017-14494 CVE-2017-14495 CVE-2017-14496

How to install

sudo dnf upgrade --advisory=FEDORA-2017-24f067299e

Comments 10

This update has been submitted for testing by pemensik.

pemensik edited this update.

pemensik edited this update.

New build(s):

  • dnsmasq-2.76-5.fc26

Removed build(s):

  • dnsmasq-2.76-4.fc26

Karma has been reset.

karma: +1 critpath: +1 #1495409: +1 #1495410: +1 #1495411: +1 #1495412: +1 #1495415: +1 #1495416: +1 #1497691: +1
karma: +1 critpath: +1

This update has been pushed to testing.

I'm unable to test the CVE specifics, but the basic functionality is fine in my use case: virtual machines.

karma: +1 critpath: +1

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
urgent
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago
modified 2 years ago

Related Bugs 7

0+1 #1495409 CVE-2017-14491 dnsmasq: heap overflow in the code responsible for building DNS replies
0+1 #1495410 CVE-2017-14492 dnsmasq: heap overflow in the IPv6 router advertisement code
0+1 #1495411 CVE-2017-14493 dnsmasq: stack buffer overflow in the DHCPv6 code
0+1 #1495412 CVE-2017-14494 dnsmasq: information leak in the DHCPv6 relay code
0+1 #1495415 CVE-2017-14495 dnsmasq: memory exhaustion vulnerability in the EDNS0 code
0+1 #1495416 CVE-2017-14496 dnsmasq: integer underflow leading to buffer over-read in the EDNS0 code
0+1 #1497691 CVE-2017-14491 CVE-2017-14492 CVE-2017-14493 CVE-2017-14494 CVE-2017-14495 CVE-2017-14496 dnsmasq: various flaws [fedora-all]

Automated Test Results