CVE-2022-0934

Name
CVE-2022-0934
Description
A single-byte, non-arbitrary write/use-after-free flaw was found in dnsmasq. This flaw allows an attacker who sends a crafted packet processed by dnsmasq, potentially causing a denial of service.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://bugzilla.redhat.com/show_bug.cgi?id=2057075
MISC https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2022q1/016272.html
MISC https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=03345ecefeb0d82e3c3a4c28f27c3554f0611b39
MISC https://access.redhat.com/security/cve/CVE-2022-0934

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:thekelleys:dnsmasq:-:*:*:*:*:*:*:* dnsmasq == None == -

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
dnsmasq 3.15-main 2.86-r1 Natanael Copa <ncopa@alpinelinux.org> fixed