Bug 1395258

Summary: maradns: Remote DoS issues
Product: [Other] Security Response Reporter: Andrej Nemec <anemec>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED NOTABUG QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: tomek
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-12-04 11:20:59 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Bug Depends On: 1395259    
Bug Blocks:    

Description Andrej Nemec 2016-11-15 14:17:47 UTC 
Multiple vulnerabilities resulting in crash were found in maraDNS.

CVE-2016-9300:
Remote crash bug in MaraDNS 2.0.13 js_readuint16

CVE-2016-9301:
Remote crash bug in MaraDNS 2.0.13 js_substr

CVE-2016-9302:
Remote crash bug in MaraDNS 2.0.13 process_query -> this in fact looks like stack smashing, since it crashes on htons in an unrelated place

References:

http://seclists.org/oss-sec/2016/q4/411
Comment 1 Andrej Nemec 2016-11-15 14:18:08 UTC 
Created maradns tracking bugs for this issue:

Affects: fedora-all [bug 1395259]
Comment 2 Tomasz Torcz 2016-12-04 11:20:59 UTC 
https://github.com/samboy/MaraDNS/issues/33
Comment 3 Andrej Nemec 2016-12-07 08:19:42 UTC 
These CVEs have been rejected by Mitre now.