NVD Vulnerability Detail

CVE-2021-3448

Summary	A flaw was found in dnsmasq in versions before 2.85. When configured to use a specific server for a given network interface, dnsmasq uses a fixed port while forwarding queries. An attacker on the network, able to find the outgoing port used by dnsmasq, only needs to guess the random transmission ID to forge a reply and get it accepted by dnsmasq. This flaw makes a DNS Cache Poisoning attack much easier. The highest threat from this vulnerability is to data integrity.
Publication Date	April 9, 2021, 8:15 a.m.
Registration Date	April 9, 2021, 10:04 a.m.
Last Update	Nov. 21, 2024, 3:21 p.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:thekelleys:dnsmasq::::::::					2.85

Configuration2		or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*

Configuration4		or higher	or less	more than	less than
cpe:2.3:a:oracle:communications_cloud_native_core_network_function_cloud_native_environment:1.9.0:::::::*

Related information, measures and tools

No	URL	タグ
1	https://bugzilla.redhat.com/show_bug.cgi?id=1939368	Exploit Issue Tracking Patch Third Party Advisory
2	https://bugzilla.redhat.com/show_bug.cgi?id=1939368	Exploit Issue Tracking Patch Third Party Advisory
3	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CVTJUOFFFHINLKWAOC2ZSC5MOPD4SJ24/
4	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CVTJUOFFFHINLKWAOC2ZSC5MOPD4SJ24/
5	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FHG7GWSQWKF7JXIMLOGJBKZWBB4VIAJ7/
6	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FHG7GWSQWKF7JXIMLOGJBKZWBB4VIAJ7/
7	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GHURNEHHUBSW45KMIZ4FNBCSUPWPGV5V/
8	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GHURNEHHUBSW45KMIZ4FNBCSUPWPGV5V/
9	https://security.gentoo.org/glsa/202105-20	Third Party Advisory
10	https://security.gentoo.org/glsa/202105-20	Third Party Advisory
11	https://www.oracle.com/security-alerts/cpujan2022.html	Patch Third Party Advisory
12	https://www.oracle.com/security-alerts/cpujan2022.html	Patch Third Party Advisory

Common Vulnerabilities List

JVN Vulnerability Information

dnsmasq における脆弱性

Title	dnsmasq における脆弱性
Summary	dnsmasq には、不特定の脆弱性が存在します。
Possible impacts	情報を改ざんされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	March 16, 2021, midnight
Registration Date	Dec. 15, 2021, 5:52 p.m.
Last Update	Dec. 15, 2021, 5:52 p.m.

Affected System

レッドハット

Red Hat Enterprise Linux

Fedora Project

Fedora

thekelleys

Dnsmasq 2.85 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2021-3448	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3448
National Vulnerability Database (NVD)
2	CVE-2021-3448	https://nvd.nist.gov/vuln/detail/CVE-2021-3448

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-Other	https://www.ipa.go.jp/security/vuln/CWE.html#CWEOther

ベンダー情報

No	Name	URL
Fedora Update Notification
1	FEDORA-2021-5cd2571751	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CVTJUOFFFHINLKWAOC2ZSC5MOPD4SJ24/
2	FEDORA-2021-62a5062b2d	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GHURNEHHUBSW45KMIZ4FNBCSUPWPGV5V/
3	FEDORA-2021-9433bedebd	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FHG7GWSQWKF7JXIMLOGJBKZWBB4VIAJ7/
Red Hat Bugzilla
4	Bug 1939368	https://bugzilla.redhat.com/show_bug.cgi?id=1939368
thekelleys
5	Dnsmasq	https://thekelleys.org.uk/dnsmasq/doc.html

その他

No	Name	URL
関連文書
1	GLSA 202105-20 (Use of insufficient randomness in Dnsmasq might lead to DNS Cache Poisoning.)	https://security.gentoo.org/glsa/202105-20

Change Log

No	Changed Details	Date of change
1	[2021年12月15日] 掲載	Dec. 15, 2021, 5:52 p.m.