CVE-2017-14494

Source
Severity Medium
Remote Yes
Type Information disclosure
Description
An information leak was found in dnsmasq in the DHCPv6 relay code. An attacker on the local network could send crafted DHCPv6 packets to dnsmasq causing it to forward the contents of process memory, potentially leaking sensitive data.
Group Package Affected Fixed Severity Status Ticket
AVG-421 dnsmasq 2.77-1 2.78-1 Critical Fixed
Date Advisory Group Package Severity Description
02 Oct 2017 ASA-201710-1 AVG-421 dnsmasq Critical multiple issues
References
http://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commitdiff;h=33e3f1029c9ec6c63e430ff51063a6301d4b2262