CVE 2017-14495
'Memory leak in dnsmasq before 2.78, when the –add-mac, –add-cpe-id or –add-subnet option is specified, allows remote attackers to cause a denial of service (memory consumption) via vectors involving DNS response creation.'
ClearCenter response
Short response
This issue was resolved in a backported fix. Current up to date versions not affected.
Long response
This issue was resolved in ddnsmasq-2.76-2 for ClearOS 7.x. Systems with this version of dnsmasq or higher are not affected by this issue. ClearOS 6 systems are not affected by this vulnerability.
Resolution
To validate that you are running dnsmasq-2.76-2 or higher by issuing the following command:
rpm -qi dnsmasq
If you are running a lesser version than dnsmasq-2.76-2 on ClearOS 7, please update your system by running:
yum update