'Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.'

• Copyright MITRE Corporation

This issue was resolved in a backported fix. Current up to date versions not affected.

This issue was resolved in dnsmasq-2.48-18 for ClearOS 6.x. Systems with this version of dnsmasq or higher are not affected by this issue. ClearOS 7 and later systems are not affected.

To validate that you are running dnsmasq-2.48-18 or higher by issuing the following command:

rpm -qi dnsmasq

If you are running a lesser version than dnsmasq-2.48-18, please update your system by running:

yum update

• MITRE.org CVE database

search?q=clearos%2C%20clearos%20content%2C%20CVE%2C%20CVE2017%2C%20maintainer_dloper&btnI=lucky