In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xffffffff zero's (0xffffffffffffffff in 64 bit platforms), making dnsmasq crash.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-10-02T21:00:00

Updated: 2024-08-05T19:05:20.078Z

Reserved: 2017-08-25T00:00:00

Link: CVE-2017-13704

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-10-03T01:29:01.637

Modified: 2023-11-07T02:38:41.510

Link: CVE-2017-13704

cve-icon Redhat

Severity : Important

Publid Date: 2017-08-21T00:00:00Z

Links: CVE-2017-13704 - Bugzilla