6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
7.9 High
AI Score
Confidence
Low
0.017 Low
EPSS
Percentile
88.0%
Package : dnsmasq
Version : 2.55-2+deb6u1
CVE ID : CVE-2015-3294
Debian Bug : 783459
The following vulnerability vulnerability was found in dnsmasq:
CVE-2015-3294
Remote attackers could read process memory and cause DoS via
malformed DNS requests.
For Debian 6 “Squeeze”, these issues have been fixed in dnsmasq version
2.55-2+deb6u1.
Attachment:
signature.asc
Description: Digital signature
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 7 | kfreebsd-i386 | dnsmasq-base | < 2.62-3+deb7u2 | dnsmasq-base_2.62-3+deb7u2_kfreebsd-i386.deb |
Debian | 8 | armel | dnsmasq-base | < 2.72-3+deb8u1 | dnsmasq-base_2.72-3+deb8u1_armel.deb |
Debian | 8 | mipsel | dnsmasq-utils | < 2.72-3+deb8u1 | dnsmasq-utils_2.72-3+deb8u1_mipsel.deb |
Debian | 8 | ppc64el | dnsmasq-utils | < 2.72-3+deb8u1 | dnsmasq-utils_2.72-3+deb8u1_ppc64el.deb |
Debian | 7 | ia64 | dnsmasq-utils | < 2.62-3+deb7u2 | dnsmasq-utils_2.62-3+deb7u2_ia64.deb |
Debian | 8 | i386 | dnsmasq-utils | < 2.72-3+deb8u1 | dnsmasq-utils_2.72-3+deb8u1_i386.deb |
Debian | 8 | arm64 | dnsmasq-base | < 2.72-3+deb8u1 | dnsmasq-base_2.72-3+deb8u1_arm64.deb |
Debian | 6 | all | dnsmasq | < 2.55-2+deb6u1 | dnsmasq_2.55-2+deb6u1_all.deb |
Debian | 7 | kfreebsd-amd64 | dnsmasq-base | < 2.62-3+deb7u2 | dnsmasq-base_2.62-3+deb7u2_kfreebsd-amd64.deb |
Debian | 8 | mips | dnsmasq-utils | < 2.72-3+deb8u1 | dnsmasq-utils_2.72-3+deb8u1_mips.deb |