Details of VAR-202101-0220

ID

VAR-202101-0220

CVE

CVE-2020-25684

TITLE

Dnsmasq is vulnerable to memory corruption and cache poisoning

Trust: 0.8

sources: CERT/CC: VU#434904

DESCRIPTION

A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query, dnsmasq checks in the forward.c:reply_query() if the reply destination address/port is used by the pending forwarded queries. However, it does not use the address/port to retrieve the exact forwarded query, substantially reducing the number of attempts an attacker on the network would have to perform to forge a reply and get it accepted by dnsmasq. This issue contrasts with RFC5452, which specifies a query's attributes that all must be used to match a reply. This flaw allows an attacker to perform a DNS Cache Poisoning attack. If chained with CVE-2020-25685 or CVE-2020-25686, the attack complexity of a successful attack is reduced. The highest threat from this vulnerability is to data integrity. Dnsmasq is vulnerable to a set of memory corruption issues handling DNSSEC data and a second set of issues validating DNS responses. These vulnerabilities could allow an attacker to corrupt memory on a vulnerable system and perform cache poisoning attacks against a vulnerable environment.CVE-2020-25681 Not Affected CVE-2020-25682 Not Affected CVE-2020-25683 Not Affected CVE-2020-25684 Affected CVE-2020-25685 Affected CVE-2020-25686 Affected CVE-2020-25687 Not AffectedCVE-2020-25681 Not Affected CVE-2020-25682 Not Affected CVE-2020-25683 Not Affected CVE-2020-25684 Affected CVE-2020-25685 Affected CVE-2020-25686 Affected CVE-2020-25687 Not Affected. dnsmasq There is a security check vulnerability in.Information may be tampered with. Dnsmasq is a lightweight DNS forwarding and DHCP and TFTP server written in C language. Relevant releases/architectures: RHEL 8-based RHEV-H for RHEV 4 (build requirements) - noarch, x86_64 Red Hat Virtualization 4 Hypervisor for RHEL 8 - noarch, x86_64 Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts - noarch 3. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks. Bug Fix(es): * Previously, the Red Hat Virtualization Host (RHV-H) repository (rhvh-4-for-rhel-8-x86_64-rpms) did not include the libsmbclient package, which is a dependency for the sssd-ad package. Consequently, the sssd-ad package failed to install. With this update, the libsmbclient is now in the RHV-H repository, and sssd-ad now installs on RHV-H. (BZ#1868967) 4. 8) - aarch64, ppc64le, s390x, x86_64 3. 7.7) - ppc64, ppc64le, s390x, x86_64 3. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: dnsmasq security update Advisory ID: RHSA-2021:0156-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:0156 Issue date: 2021-01-19 CVE Names: CVE-2020-25684 CVE-2020-25685 CVE-2020-25686 ==================================================================== 1. Summary: An update for dnsmasq is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server AUS (v. 7.4) - x86_64 Red Hat Enterprise Linux Server E4S (v. 7.4) - ppc64le, x86_64 Red Hat Enterprise Linux Server Optional AUS (v. 7.4) - x86_64 Red Hat Enterprise Linux Server Optional E4S (v. 7.4) - ppc64le, x86_64 Red Hat Enterprise Linux Server Optional TUS (v. 7.4) - x86_64 Red Hat Enterprise Linux Server TUS (v. 7.4) - x86_64 3. Security Fix(es): * dnsmasq: loose address/port check in reply_query() makes forging replies easier for an off-path attacker (CVE-2020-25684) * dnsmasq: loose query name check in reply_query() makes forging replies easier for an off-path attacker (CVE-2020-25685) * dnsmasq: multiple queries forwarded for the same name makes forging replies easier for an off-path attacker (CVE-2020-25686) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1889686 - CVE-2020-25684 dnsmasq: loose address/port check in reply_query() makes forging replies easier for an off-path attacker 1889688 - CVE-2020-25685 dnsmasq: loose query name check in reply_query() makes forging replies easier for an off-path attacker 1890125 - CVE-2020-25686 dnsmasq: multiple queries forwarded for the same name makes forging replies easier for an off-path attacker 6. Package List: Red Hat Enterprise Linux Server AUS (v. 7.4): Source: dnsmasq-2.76-2.el7_4.3.src.rpm x86_64: dnsmasq-2.76-2.el7_4.3.x86_64.rpm dnsmasq-debuginfo-2.76-2.el7_4.3.x86_64.rpm Red Hat Enterprise Linux Server E4S (v. 7.4): Source: dnsmasq-2.76-2.el7_4.3.src.rpm ppc64le: dnsmasq-2.76-2.el7_4.3.ppc64le.rpm dnsmasq-debuginfo-2.76-2.el7_4.3.ppc64le.rpm x86_64: dnsmasq-2.76-2.el7_4.3.x86_64.rpm dnsmasq-debuginfo-2.76-2.el7_4.3.x86_64.rpm Red Hat Enterprise Linux Server TUS (v. 7.4): Source: dnsmasq-2.76-2.el7_4.3.src.rpm x86_64: dnsmasq-2.76-2.el7_4.3.x86_64.rpm dnsmasq-debuginfo-2.76-2.el7_4.3.x86_64.rpm Red Hat Enterprise Linux Server Optional AUS (v. 7.4): x86_64: dnsmasq-debuginfo-2.76-2.el7_4.3.x86_64.rpm dnsmasq-utils-2.76-2.el7_4.3.x86_64.rpm Red Hat Enterprise Linux Server Optional E4S (v. 7.4): ppc64le: dnsmasq-debuginfo-2.76-2.el7_4.3.ppc64le.rpm dnsmasq-utils-2.76-2.el7_4.3.ppc64le.rpm x86_64: dnsmasq-debuginfo-2.76-2.el7_4.3.x86_64.rpm dnsmasq-utils-2.76-2.el7_4.3.x86_64.rpm Red Hat Enterprise Linux Server Optional TUS (v. 7.4): x86_64: dnsmasq-debuginfo-2.76-2.el7_4.3.x86_64.rpm dnsmasq-utils-2.76-2.el7_4.3.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-25684 https://access.redhat.com/security/cve/CVE-2020-25685 https://access.redhat.com/security/cve/CVE-2020-25686 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/security/vulnerabilities/RHSB-2021-001 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYAbg5dzjgjWX9erEAQjfmA//U9huQUHWE5px5MpvL3/7ZlTnU3Q23tSz lOkHHhl4hwFmETAaVUv/Zoc1N7OfxHzC6C4ot2+rPFj+oMcZQeXUrfhKZkG5kWMn Qy/yIN9myOJ9jjM+2NmF+nQPAiIVi2fU/LkDIEYGXihDZB67/bvu2ErbX2dEOGaH ikX4JNYAVw8vnCZgRy2bbXq47Nff8oeys9sTcDWIq61Svg2mHYYtIoF4Xmz5N5u5 Gb+75FFSxlBoNQFbDyydm19UpGTGZ1dP5Giquvuv8hN0lXGDZN39TANk8FruwnB+ ibyRgzf1R3IwDKbMdkICVOtxfR6cMUXOk5fB6bygyL8Ki6o03N1/HPnQTOQ3XPDO Ya0eswXvMpG8DdhIPi6xlVhorxDj4QKaVKC82rnbb27KJP+UPC8KXfp8lEZSD0zX 56f2O2t42rjzrulnijDdeHtW6oI1MytA/hVLLM0Sdt6PYS19jflucnwP2UuZn0aR RRWjdK6Tx0OYxpPQBYVKygzm+0ke7Ee5BoGn+sYU5SZSH6ro0AlfIRVQn6XmTGUj Gotg6jc4a6HXjhrA72lkxvW9pzFVXpfiQ/VFhBblP39dcCXXyRfTSzgbutDAz7eu 5R8SwUBVIJ0e/Pp32WAMapLfKc+Pj9VG/INfwYYxtpWooy2cHk+3HZIy8gXylhCA lyNYjR6LrCc=sh0K -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 202101-17 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Dnsmasq: Multiple vulnerabilities Date: January 22, 2021 Bugs: #766126 ID: 202101-17 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Multiple vulnerabilities have been found in Dnsmasq, the worst of which may allow remote attackers to execute arbitrary code. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-dns/dnsmasq < 2.83 >= 2.83 Description =========== Multiple vulnerabilities have been discovered in Dnsmasq. Impact ====== An attacker, by sending specially crafted DNS replies, could possibly execute arbitrary code with the privileges of the process, perform a cache poisoning attack or cause a Denial of Service condition. Workaround ========== There is no known workaround at this time. Resolution ========== All Dnsmasq users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=net-dns/dnsmasq-2.83" References ========== [ 1 ] CVE-2020-25681 https://nvd.nist.gov/vuln/detail/CVE-2020-25681 [ 2 ] CVE-2020-25682 https://nvd.nist.gov/vuln/detail/CVE-2020-25682 [ 3 ] CVE-2020-25683 https://nvd.nist.gov/vuln/detail/CVE-2020-25683 [ 4 ] CVE-2020-25684 https://nvd.nist.gov/vuln/detail/CVE-2020-25684 [ 5 ] CVE-2020-25685 https://nvd.nist.gov/vuln/detail/CVE-2020-25685 [ 6 ] CVE-2020-25686 https://nvd.nist.gov/vuln/detail/CVE-2020-25686 [ 7 ] CVE-2020-25687 https://nvd.nist.gov/vuln/detail/CVE-2020-25687 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/202101-17 Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2021 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5

Trust: 3.6

sources: NVD: CVE-2020-25684 // CERT/CC: VU#434904 // JVNDB: JVNDB-2020-015547 // CNVD: CNVD-2021-16431 // VULMON: CVE-2020-25684 // PACKETSTORM: 161281 // PACKETSTORM: 161012 // PACKETSTORM: 161019 // PACKETSTORM: 161013 // PACKETSTORM: 161015 // PACKETSTORM: 161085 // PACKETSTORM: 161101

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2021-16431

AFFECTED PRODUCTS

vendor:	fedoraproject	model:	fedora	scope:	eq	version:	33	Trust: 1.0
vendor:	arista	model:	eos	scope:	lt	version:	4.24.5m	Trust: 1.0
vendor:	arista	model:	eos	scope:	gte	version:	4.22	Trust: 1.0
vendor:	debian	model:	linux	scope:	eq	version:	10.0	Trust: 1.0
vendor:	arista	model:	eos	scope:	gte	version:	4.21	Trust: 1.0
vendor:	arista	model:	eos	scope:	lt	version:	4.23.7m	Trust: 1.0
vendor:	arista	model:	eos	scope:	lt	version:	4.25.2f	Trust: 1.0
vendor:	arista	model:	eos	scope:	gte	version:	4.23	Trust: 1.0
vendor:	arista	model:	eos	scope:	lt	version:	4.22.9m	Trust: 1.0
vendor:	fedoraproject	model:	fedora	scope:	eq	version:	32	Trust: 1.0
vendor:	arista	model:	eos	scope:	gte	version:	4.24	Trust: 1.0
vendor:	arista	model:	eos	scope:	lt	version:	4.21.14m	Trust: 1.0
vendor:	arista	model:	eos	scope:	gte	version:	4.25	Trust: 1.0
vendor:	thekelleys	model:	dnsmasq	scope:	lt	version:	2.83	Trust: 1.0
vendor:	debian	model:	linux	scope:	eq	version:	9.0	Trust: 1.0
vendor:	debian	model:	gnu/linux	scope:	-	version:	-	Trust: 0.8
vendor:	thekelleys	model:	dnsmasq	scope:	-	version:	-	Trust: 0.8
vendor:	fedora	model:	fedora	scope:	-	version:	-	Trust: 0.8
vendor:	dnsmasq	model:	dnsmasq	scope:	eq	version:	2.83	Trust: 0.6

sources: CNVD: CNVD-2021-16431 // JVNDB: JVNDB-2020-015547 // NVD: CVE-2020-25684

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2020-25684
value:	LOW
Trust: 1.0
NVD:	CVE-2020-25684
value:	LOW
Trust: 0.8
CNVD:	CNVD-2021-16431
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-202101-1611
value:	LOW
Trust: 0.6
VULMON:	CVE-2020-25684
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2020-25684
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
CNVD:	CNVD-2021-16431
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2020-25684
baseSeverity:	LOW
baseScore:	3.7
vectorString:	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
attackVector:	NETWORK
attackComplexity:	HIGH
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	LOW
availabilityImpact:	NONE
exploitabilityScore:	2.2
impactScore:	1.4
version:	3.1
Trust: 1.0
NVD:	CVE-2020-25684
baseSeverity:	LOW
baseScore:	3.7
vectorString:	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
attackVector:	NETWORK
attackComplexity:	HIGH
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	LOW
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: CNVD: CNVD-2021-16431 // VULMON: CVE-2020-25684 // JVNDB: JVNDB-2020-015547 // CNNVD: CNNVD-202101-1611 // NVD: CVE-2020-25684

PROBLEMTYPE DATA

problemtype:	NVD-CWE-Other	Trust: 1.0
problemtype:	CWE-358	Trust: 1.0
problemtype:	Improperly implemented security checks (CWE-358) [ Other ]	Trust: 0.8

sources: JVNDB: JVNDB-2020-015547 // NVD: CVE-2020-25684

THREAT TYPE

remote

Trust: 0.7

sources: PACKETSTORM: 161085 // CNNVD: CNNVD-202101-1611

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202101-1611

PATCH

title:	Top Page	url:	https://lists.debian.org/debian-lts-announce/2021/03/msg00027.html	Trust: 0.8
title:	Patch for Dnsmasq security feature issue vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/251931	Trust: 0.6
title:	Dnsmasq Fixing measures for security feature vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=139960	Trust: 0.6
title:	Red Hat: Moderate: dnsmasq security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20210156 - Security Advisory	Trust: 0.1
title:	Red Hat: Moderate: dnsmasq security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20210240 - Security Advisory	Trust: 0.1
title:	Red Hat: Moderate: dnsmasq security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20210245 - Security Advisory	Trust: 0.1
title:	Red Hat: Moderate: dnsmasq security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20210153 - Security Advisory	Trust: 0.1
title:	Red Hat: Moderate: dnsmasq security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20210154 - Security Advisory	Trust: 0.1
title:	Red Hat: Moderate: dnsmasq security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20210155 - Security Advisory	Trust: 0.1
title:	Red Hat: Important: Red Hat Virtualization Host security bug fix and enhancement update [ovirt-4.4.4]	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20210401 - Security Advisory	Trust: 0.1
title:	Red Hat: Important: RHV-H security, bug fix, enhancement update (redhat-virtualization-host) 4.3.13	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20210395 - Security Advisory	Trust: 0.1
title:	Red Hat: Important: dnsmasq security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20210151 - Security Advisory	Trust: 0.1
title:	Red Hat: Important: dnsmasq security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20210150 - Security Advisory	Trust: 0.1
title:	Red Hat: Important: dnsmasq security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20210152 - Security Advisory	Trust: 0.1
title:	Arch Linux Issues:	url:	https://vulmon.com/vendoradvisory?qidtp=arch_linux_issues&qid=CVE-2020-25684 log	Trust: 0.1
title:	Amazon Linux 2: ALAS2-2021-1587	url:	https://vulmon.com/vendoradvisory?qidtp=amazon_linux2&qid=ALAS2-2021-1587	Trust: 0.1
title:	Debian Security Advisories: DSA-4844-1 dnsmasq -- security update	url:	https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories&qid=6bdd82a7af8c0333eca753b3b7b02111	Trust: 0.1
title:	Red Hat: Important: OpenShift Container Platform 4.4.33 bug fix and security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20210281 - Security Advisory	Trust: 0.1
title:	Cisco: Multiple Vulnerabilities in dnsmasq DNS Forwarder Affecting Cisco Products: January 2021	url:	https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts&qid=cisco-sa-dnsmasq-dns-2021-c5mrdf3g	Trust: 0.1
title:	dnspooq	url:	https://github.com/knqyf263/dnspooq	Trust: 0.1
title:	multironic Requirements: Install libvirt and prepare nodes have to check why we need this TODO download ironic images later Pull images Tag images Push images run httpd Check that two vbmcs are running for the two nodes Play with vbmc and ipmitools Run management cluster Firewall Launch ironic run capm3 Firewall Ref	url:	https://github.com/mboukhalfa/multironic	Trust: 0.1
title:	Criminal IP NSE Script	url:	https://github.com/criminalip/CIP-NSE-Script	Trust: 0.1
title:	Intro: What's pique or repique Overview	url:	https://github.com/AZ-X/pique	Trust: 0.1
title:	https://github.com/klcheung99/CSCM28CW2	url:	https://github.com/klcheung99/CSCM28CW2	Trust: 0.1
title:	Kaosagnt's Ansible Everyday Utils	url:	https://github.com/kaosagnt/ansible-everyday	Trust: 0.1
title:	F5の脆弱性情報	url:	https://github.com/DNTYO/F5_Vulnerability	Trust: 0.1
title:	Vulnerability	url:	https://github.com/tzwlhack/Vulnerability	Trust: 0.1
title:	TOP Table of Contents Donation	url:	https://github.com/JERRY123S/all-poc	Trust: 0.1
title:	SecBooks SecBooks目录	url:	https://github.com/SexyBeast233/SecBooks	Trust: 0.1
title:	Table of Contents	url:	https://github.com/CVEDB/top	Trust: 0.1
title:	Table of Contents	url:	https://github.com/CVEDB/awesome-cve-repo	Trust: 0.1
title:	TOP Table of Contents Donation	url:	https://github.com/hktalent/TOP	Trust: 0.1
title:	TOP Table of Contents Donation	url:	https://github.com/cyberanand1337x/bug-bounty-2022	Trust: 0.1
title:	TOP Table of Contents Donation	url:	https://github.com/weeka10/-hktalent-TOP	Trust: 0.1
title:	PoC in GitHub	url:	https://github.com/developer3000S/PoC-in-GitHub	Trust: 0.1
title:	The Register	url:	https://www.theregister.co.uk/2021/01/20/dns_cache_poisoning/	Trust: 0.1

sources: CNVD: CNVD-2021-16431 // VULMON: CVE-2020-25684 // JVNDB: JVNDB-2020-015547 // CNNVD: CNNVD-202101-1611

EXTERNAL IDS

db:	NVD	id:	CVE-2020-25684	Trust: 4.6
db:	AUSCERT	id:	ESB-2021.0231	Trust: 1.2
db:	CERT/CC	id:	VU#434904	Trust: 0.8
db:	JVN	id:	JVNVU90340376	Trust: 0.8
db:	JVNDB	id:	JVNDB-2020-015547	Trust: 0.8
db:	PACKETSTORM	id:	161281	Trust: 0.7
db:	PACKETSTORM	id:	161085	Trust: 0.7
db:	CNVD	id:	CNVD-2021-16431	Trust: 0.6
db:	PACKETSTORM	id:	161535	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.0987	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.0420	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.0692	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.0864	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.0283	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.1088	Trust: 0.6
db:	AUSCERT	id:	ESB-2021.0699	Trust: 0.6
db:	CS-HELP	id:	SB2021122911	Trust: 0.6
db:	CS-HELP	id:	SB2021070106	Trust: 0.6
db:	ICS CERT	id:	ICSA-21-019-01	Trust: 0.6
db:	CNNVD	id:	CNNVD-202101-1611	Trust: 0.6
db:	VULMON	id:	CVE-2020-25684	Trust: 0.1
db:	PACKETSTORM	id:	161012	Trust: 0.1
db:	PACKETSTORM	id:	161019	Trust: 0.1
db:	PACKETSTORM	id:	161013	Trust: 0.1
db:	PACKETSTORM	id:	161015	Trust: 0.1
db:	PACKETSTORM	id:	161101	Trust: 0.1

sources: CERT/CC: VU#434904 // CNVD: CNVD-2021-16431 // VULMON: CVE-2020-25684 // JVNDB: JVNDB-2020-015547 // PACKETSTORM: 161281 // PACKETSTORM: 161012 // PACKETSTORM: 161019 // PACKETSTORM: 161013 // PACKETSTORM: 161015 // PACKETSTORM: 161085 // PACKETSTORM: 161101 // CNNVD: CNNVD-202101-1611 // NVD: CVE-2020-25684

REFERENCES

url:	https://bugzilla.redhat.com/show_bug.cgi?id=1889686	Trust: 2.5
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25684	Trust: 2.1
url:	https://security.gentoo.org/glsa/202101-17	Trust: 1.8
url:	https://www.jsof-tech.com/disclosures/dnspooq/	Trust: 1.7
url:	https://www.debian.org/security/2021/dsa-4844	Trust: 1.7
url:	https://lists.debian.org/debian-lts-announce/2021/03/msg00027.html	Trust: 1.7
url:	https://www.arista.com/en/support/advisories-notices/security-advisories/12135-security-advisory-61	Trust: 1.7
url:	https://www.auscert.org.au/bulletins/esb-2021.0231/	Trust: 1.2
url:	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/wyw3ir6apuskoykl5ft3actihwhgqy32/	Trust: 1.1
url:	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/qgb7hl3owhtlepsmldgomxqkg3km2qme/	Trust: 1.1
url:	cve-2020-25681	Trust: 0.8
url:	cve-2020-25682	Trust: 0.8
url:	cve-2020-25683	Trust: 0.8
url:	cve-2020-25684	Trust: 0.8
url:	cve-2020-25685	Trust: 0.8
url:	cve-2020-25686	Trust: 0.8
url:	cve-2020-25687	Trust: 0.8
url:	https://jvn.jp/vu/jvnvu90340376/	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25686	Trust: 0.7
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25685	Trust: 0.7
url:	https://www.redhat.com/mailman/listinfo/rhsa-announce	Trust: 0.6
url:	https://access.redhat.com/security/cve/cve-2020-25685	Trust: 0.6
url:	https://access.redhat.com/security/vulnerabilities/rhsb-2021-001	Trust: 0.6
url:	https://bugzilla.redhat.com/):	Trust: 0.6
url:	https://access.redhat.com/security/team/key/	Trust: 0.6
url:	https://access.redhat.com/security/cve/cve-2020-25686	Trust: 0.6
url:	https://access.redhat.com/security/cve/cve-2020-25684	Trust: 0.6
url:	https://access.redhat.com/security/team/contact/	Trust: 0.6
url:	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/qgb7hl3owhtlepsmldgomxqkg3km2qme/	Trust: 0.6
url:	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/wyw3ir6apuskoykl5ft3actihwhgqy32/	Trust: 0.6
url:	https://packetstormsecurity.com/files/161281/red-hat-security-advisory-2021-0401-01.html	Trust: 0.6
url:	https://packetstormsecurity.com/files/161535/ubuntu-security-notice-usn-4698-2.html	Trust: 0.6
url:	https://packetstormsecurity.com/files/161085/gentoo-linux-security-advisory-202101-17.html	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.0699	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.0864	Trust: 0.6
url:	https://www.huawei.com/cn/psirt/security-notices/huawei-sn-20210120-01-dnspooq-cn	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.0987	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.0283/	Trust: 0.6
url:	https://us-cert.cisa.gov/ics/advisories/icsa-21-019-01	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.0692	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.1088	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2021.0420	Trust: 0.6
url:	https://www.cybersecurity-help.cz/vdb/sb2021070106	Trust: 0.6
url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-dnsmasq-dns-2021-c5mrdf3g	Trust: 0.6
url:	https://www.ibm.com/blogs/psirt/security-bulletin-ibm-security-privileged-identity-manager-is-affected-by-security-vulnerabilities-cve-2020-25684-cve-2020-25685-cve-2020-25686/	Trust: 0.6
url:	https://www.cybersecurity-help.cz/vdb/sb2021122911	Trust: 0.6
url:	https://access.redhat.com/articles/11258	Trust: 0.5
url:	https://access.redhat.com/security/updates/classification/#important	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25682	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25687	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25683	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2020-25681	Trust: 0.3
url:	https://access.redhat.com/security/updates/classification/#moderate	Trust: 0.3
url:	https://access.redhat.com/errata/rhsa-2021:0156	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-25682	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-25687	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-25681	Trust: 0.2
url:	https://access.redhat.com/security/cve/cve-2020-25683	Trust: 0.2
url:	https://cwe.mitre.org/data/definitions/.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://github.com/knqyf263/dnspooq	Trust: 0.1
url:	https://security.archlinux.org/cve-2020-25684	Trust: 0.1
url:	https://access.redhat.com/articles/2974891	Trust: 0.1
url:	https://access.redhat.com/security/vulnerabilities/rhsb-2021-002	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2021-3156	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:0401	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2021-3156	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:0150	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:0154	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:0152	Trust: 0.1
url:	https://creativecommons.org/licenses/by-sa/2.5	Trust: 0.1
url:	https://security.gentoo.org/	Trust: 0.1
url:	https://bugs.gentoo.org.	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2021:0245	Trust: 0.1

CREDITS

This document was written by Vijay Sarvepalli.Statement Date: January 04, 2021

Trust: 0.8

sources: CERT/CC: VU#434904

SOURCES

db:	CERT/CC	id:	VU#434904
db:	CNVD	id:	CNVD-2021-16431
db:	VULMON	id:	CVE-2020-25684
db:	JVNDB	id:	JVNDB-2020-015547
db:	PACKETSTORM	id:	161281
db:	PACKETSTORM	id:	161012
db:	PACKETSTORM	id:	161019
db:	PACKETSTORM	id:	161013
db:	PACKETSTORM	id:	161015
db:	PACKETSTORM	id:	161085
db:	PACKETSTORM	id:	161101
db:	CNNVD	id:	CNNVD-202101-1611
db:	NVD	id:	CVE-2020-25684

LAST UPDATE DATE

2025-04-28T20:37:40.065000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#434904	date:	2021-10-06T00:00:00
db:	CNVD	id:	CNVD-2021-16431	date:	2021-03-11T00:00:00
db:	VULMON	id:	CVE-2020-25684	date:	2023-11-07T00:00:00
db:	JVNDB	id:	JVNDB-2020-015547	date:	2021-10-04T08:30:00
db:	CNNVD	id:	CNNVD-202101-1611	date:	2022-03-10T00:00:00
db:	NVD	id:	CVE-2020-25684	date:	2024-11-21T05:18:27.603

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#434904	date:	2021-01-19T00:00:00
db:	CNVD	id:	CNVD-2021-16431	date:	2021-03-11T00:00:00
db:	VULMON	id:	CVE-2020-25684	date:	2021-01-20T00:00:00
db:	JVNDB	id:	JVNDB-2020-015547	date:	2021-10-04T00:00:00
db:	PACKETSTORM	id:	161281	date:	2021-02-03T16:36:53
db:	PACKETSTORM	id:	161012	date:	2021-01-19T14:45:12
db:	PACKETSTORM	id:	161019	date:	2021-01-19T14:46:12
db:	PACKETSTORM	id:	161013	date:	2021-01-19T14:45:21
db:	PACKETSTORM	id:	161015	date:	2021-01-19T14:45:36
db:	PACKETSTORM	id:	161085	date:	2021-01-25T14:38:26
db:	PACKETSTORM	id:	161101	date:	2021-01-25T17:28:57
db:	CNNVD	id:	CNNVD-202101-1611	date:	2021-01-20T00:00:00
db:	NVD	id:	CVE-2020-25684	date:	2021-01-20T16:15:14.163