CVE-2017-14493

Source
Severity Critical
Remote Yes
Type Arbitrary code execution
Description
A stack buffer overflow was found in dnsmasq in the DHCPv6 code. An attacker on the local network could send a crafted DHCPv6 request to dnsmasq which would cause it to a crash or, potentially, execute arbitrary code.
Group Package Affected Fixed Severity Status Ticket
AVG-421 dnsmasq 2.77-1 2.78-1 Critical Fixed
Date Advisory Group Package Severity Description
02 Oct 2017 ASA-201710-1 AVG-421 dnsmasq Critical multiple issues
References
http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commitdiff;h=3d4ff1ba8419546490b464418223132529514033