CVE-2009-2957 — dnsmasq - remote code execution

Description

Heap-based buffer overflow in the tftp_request function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, might allow remote attackers to execute arbitrary code via a long filename in a TFTP packet, as demonstrated by a read (aka RRQ) request.

How to fix CVE-2009-2957

To remediate CVE-2009-2957, upgrade the affected package to a fixed version below.

Debian/dnsmasq—upgrade to 2.50-1 or later
Debian/dnsmasq—upgrade to 2.45-1+lenny1 or later

Is CVE-2009-2957 being exploited?

Moderate — EPSS is 8.5%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (2)

from 0, < 2.50-1
from 0, < 2.45-1+lenny1

References (1)

ADVISORYsecurity-tracker.debian.org/tracker/CVE-2009-2957