CVE-2019-14834
LOWdnsmasq < 2.81 - Denial of Service via DHCP Response Memory Leak
Title source: llmDescription
A vulnerability was found in dnsmasq before version 2.81, where the memory leak allows remote attackers to cause a denial of service (memory consumption) via vectors involving DHCP response creation.
References (3)
Core 3
Core References
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JU474LT66BHNVFG5C4GEV3VTZNAEJ3BS/
Issue Tracking, Patch, Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14834
Various Sources x_refsource_confirm
http://thekelleys.org.uk/gitweb/?p=dnsmasq.git%3Ba=commit%3Bh=69bc94779c2f035a9fffdb5327a54c3aeca73ed5
Scores
CVSS v3
3.7
EPSS
0.0266
EPSS Percentile
83.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
Details
CWE
CWE-770
Status
published
Products (2)
fedoraproject/fedora
31
thekelleys/dnsmasq
< 2.81
Published
Jan 07, 2020
Tracked Since
Feb 18, 2026