OSV-2022-785

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/dnsmasq/OSV-2022-785.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2022-785
Published
2022-08-27T00:00:14.614126Z
Modified
2025-07-01T14:25:29.517657Z
Summary
Heap-buffer-overflow in resize_packet
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50617

Crash type: Heap-buffer-overflow WRITE {*}
Crash state:
resize_packet
FuzzResizePacket
fuzz_rfc1035.c
References

Affected packages

OSS-Fuzz / dnsmasq

Package

Name
dnsmasq
Purl
pkg:generic/dnsmasq

Affected ranges

Type
GIT
Repo
git://thekelleys.org.uk/dnsmasq.git
Events
Introduced
96f6444958c29a670f4254722d787f328153605c
Fixed
ec8f3e65c19e8dee114e31759d447926d3ebd7cf

Affected versions

v2.*

v2.86
v2.86rc1
v2.86rc2
v2.86rc3
v2.86test5
v2.86test6
v2.86test7
v2.87
v2.87rc1
v2.87test1
v2.87test2
v2.87test3
v2.87test4
v2.87test5
v2.87test6
v2.87test7
v2.87test8
v2.87test9
v2.88
v2.88rc1
v2.88rc2
v2.88rc3
v2.88rc4
v2.88rc5
v2.88test1
v2.88test2
v2.88test3
v2.89
v2.89test1
v2.90
v2.90deb2
v2.90test1
v2.90test2
v2.90test3
v2.90test4
v2.91
v2.91rc1
v2.91rc2
v2.91rc3
v2.91rc4
v2.91rc5
v2.91rc6
v2.91test1
v2.91test10
v2.91test2
v2.91test4
v2.91test5
v2.91test6
v2.91test7
v2.91test8
v2.91test9
v2.92test1
v2.92test10
v2.92test11
v2.92test12
v2.92test13
v2.92test2
v2.92test3
v2.92test4
v2.92test5
v2.92test6
v2.92test7
v2.92test8
v2.92test9

Ecosystem specific 

{
    "severity": "HIGH"
}

Database specific 

{
    "fixed_range": "09d741f58a50f7e9ec2d6e0634f8ab5b11a7de5f:ec8f3e65c19e8dee114e31759d447926d3ebd7cf"
}