#VU19919 Out-of-bounds read in Dnsmasq - CVE-2019-14513

Cybersecurity Help s.r.o.

Published: 2019-08-02

Vulnerability identifier: #VU19919

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2019-14513

CWE-ID: CWE-125

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Dnsmasq
Server applications / DNS servers

Vendor: GNU

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to a boundary error when processing DNS packets. The vulnerability allows an attacker controlled DNS server to send large DNS packets that result in a read operation beyond the buffer allocated for the packet.

Successful exploitation of this vulnerability may result in sensitive data disclosure or denial of service conditions.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Dnsmasq: 2.0 - 2.75

External links
https://github.com/Slovejoy/dnsmasq-pre2.76

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Ubuntu update for dnsmasq

Buffer overflow in Dnsmasq

Red Hat Enterprise Linux 7 update for dnsmasq