CVE-2021-45956

Dnsmasq 2.86 has a heap-based buffer overflow in print_mac (called from log_packet and dhcp_reply). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge.
Configurations

Configuration 1 (hide)

cpe:2.3:a:thekelleys:dnsmasq:2.86:*:*:*:*:*:*:*

History

21 Nov 2024, 06:33

Type Values Removed Values Added
References () https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35887 - Exploit, Issue Tracking, Third Party Advisory () https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35887 - Exploit, Issue Tracking, Third Party Advisory
References () https://github.com/google/oss-fuzz-vulns/blob/main/vulns/dnsmasq/OSV-2021-933.yaml - Third Party Advisory () https://github.com/google/oss-fuzz-vulns/blob/main/vulns/dnsmasq/OSV-2021-933.yaml - Third Party Advisory
References () https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2022q1/016162.html - Mailing List, Third Party Advisory () https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2022q1/016162.html - Mailing List, Third Party Advisory
References () https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2022q1/016164.html - Mailing List, Third Party Advisory () https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2022q1/016164.html - Mailing List, Third Party Advisory

28 Oct 2024, 21:35

Type Values Removed Values Added
CWE CWE-122

01 Aug 2024, 13:42

Type Values Removed Values Added
CWE CWE-122

07 Nov 2023, 03:39

Type Values Removed Values Added
Summary ** DISPUTED ** Dnsmasq 2.86 has a heap-based buffer overflow in print_mac (called from log_packet and dhcp_reply). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge." Dnsmasq 2.86 has a heap-based buffer overflow in print_mac (called from log_packet and dhcp_reply). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vulnerabilities, to the best of our knowledge.

Information

Published : 2022-01-01 00:15

Updated : 2024-11-21 06:33


NVD link : CVE-2021-45956

Mitre link : CVE-2021-45956

CVE.ORG link : CVE-2021-45956


JSON object : View

Products Affected

thekelleys

  • dnsmasq
CWE
CWE-787

Out-of-bounds Write