CVE-2022-0934

Name
CVE-2022-0934
Description
A single-byte, non-arbitrary write/use-after-free flaw was found in dnsmasq. This flaw allows an attacker who sends a crafted packet processed by dnsmasq, potentially causing a denial of service.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://bugzilla.redhat.com/show_bug.cgi?id=2057075
MISC https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2022q1/016272.html
MISC https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=03345ecefeb0d82e3c3a4c28f27c3554f0611b39
MISC https://access.redhat.com/security/cve/CVE-2022-0934
MISC https://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=03345ecefeb0d82e3c3a4c28f27c3554f0611b39
af854a3a-2127-422b-91ae-364da2661108 https://lists.debian.org/debian-lts-announce/2024/11/msg00035.html

Match rules

CPE URI Source package Min version Max version
dnsmasq == Not-Known == Not-Known

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
dnsmasq edge-main 2.86-r1 Natanael Copa <ncopa@alpinelinux.org> fixed
dnsmasq 3.22-main 2.86-r1 None fixed
dnsmasq 3.21-main 2.86-r1 None fixed
dnsmasq 3.20-main 2.86-r1 None fixed
dnsmasq 3.19-main 2.86-r1 None fixed
dnsmasq 3.18-main 2.86-r1 None fixed
dnsmasq 3.17-main 2.86-r1 None fixed