Vulnerability DatabaseCVE-2022-0934

CVE-2022-0934:
NixOS vulnerability analysis and mitigation

Overview

CVE-2022-0934 is a heap use-after-free vulnerability discovered in dnsmasq, a lightweight DNS forwarder and DHCP server. The vulnerability was independently discovered by Petr Menšík through the Google OSS-Fuzz project and Richard Johnson of Trellix Threat Labs. The flaw affects dnsmasq versions including 2.85, 2.79, and 2.76, allowing an attacker to send crafted DHCPv6 packets that could modify already freed memory (Dnsmasq Discuss).

Technical details

The vulnerability is specifically located in the dhcp6norelay function of dnsmasq's DHCPv6 server component. It involves a single-byte, non-arbitrary write/use-after-free flaw that can be triggered by processing specially crafted DHCPv6 packets (NVD, Red Hat).

Impact

The primary impact of this vulnerability is the potential for denial of service attacks against affected systems running dnsmasq. While the flaw could be triggered remotely, security researchers have indicated that it is unlikely to lead to remote code execution (Dnsmasq Discuss).

Mitigation and workarounds

A fix for this vulnerability was released in the dnsmasq git repository through commit 03345ecefeb0d82e3c3a4c28f27c3554f0611b39. Various Linux distributions have also released security updates to address this issue, including Red Hat Enterprise Linux 8 (RHSA-2022:7633) and Red Hat Enterprise Linux 9 (RHSA-2022:8070) (Red Hat).

Additional resources

Source: This report was generated using AI

View vulnerable instances

Not a Wiz customer?

Request vulnerability assessment

7.5

Score

Published August 29, 2022

Severity HIGH

CNA Score 7.5

Affected Technologies

NixOS
dnsmasq

Has Public Exploit No

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 4.5

Exploitation Probability (EPSS) N/A

Affected packages and libraries

dnsmasq-utils-debuginfo
net-dns/dnsmasq

Sources

NVD
AlmaLinux Security Advisory
- AlmaLinux 8 Severity MEDIUMHas FixAdded at: Nov 13, 2022
- AlmaLinux 9 Severity MEDIUMHas FixAdded at: Nov 19, 2022
Alpine Security Tracker
- Alpine 3.10, 3.11, 3.12, 3.13, 3.14 Severity HIGHHas FixAdded at: Dec 03, 2023
- Alpine 3.15 Severity HIGHHas FixAdded at: Apr 11, 2022
- Alpine 3.16 Severity HIGHHas FixAdded at: May 24, 2022
- Alpine 3.17 Severity HIGHHas FixAdded at: Nov 23, 2022
- Alpine 3.18 Severity HIGHHas FixAdded at: May 10, 2023
- Alpine 3.19 Severity HIGHHas FixAdded at: Dec 10, 2023
- Alpine 3.20 Severity HIGHHas FixAdded at: May 26, 2024
- Alpine 3.21 Severity HIGHHas FixAdded at: Dec 08, 2024
- Alpine 3.22 Severity HIGHHas FixAdded at: Jun 01, 2025
- Alpine edge Severity HIGHHas FixAdded at: Jun 19, 2023
CBL-Mariner
- CBL-Mariner 2.0 Severity HIGHHas FixAdded at: Jun 10, 2023
Debian Security Tracker
- Debian 9, 10 Severity MEDIUMNo FixAdded at: Apr 03, 2022
- Debian 11, 12 Severity HIGHHas FixAdded at: Apr 03, 2022
- Debian 13 Severity HIGHHas FixAdded at: Jun 11, 2023
- Debian 14 Severity HIGHHas FixAdded at: Aug 10, 2025
Gentoo Advisory Database
- Gentoo Severity MEDIUMHas FixAdded at: Dec 08, 2024
Homebrew
- Homebrew Severity HIGHHas FixAdded at: Feb 12, 2024
Nix
- Nix Severity HIGHHas FixAdded at: Nov 01, 2023
Photon Security Advisory
- Photon 3.0, 4.0 Severity HIGHHas FixAdded at: Mar 10, 2023
Red Hat Errata
- Red Hat 6, 7 Severity MEDIUMNo FixAdded at: Apr 01, 2022
- Red Hat 8 Severity MEDIUMHas FixAdded at: Apr 01, 2022
- Red Hat 9 Severity MEDIUMHas FixAdded at: Sep 06, 2022
Rocky Linux Product Errata
- Rocky 8 Severity MEDIUMHas FixAdded at: May 14, 2023
- Rocky 9 Severity MEDIUMHas FixAdded at: May 14, 2023
Ubuntu Security Tracker
- Ubuntu 14.04, 16.04 Severity MEDIUMHas FixAdded at: May 11, 2022
- Ubuntu 18.04, 20.04 Severity MEDIUMHas FixAdded at: Apr 07, 2022
- Ubuntu 21.10, 22.04, 22.10 Severity MEDIUMHas FixAdded at: Nov 01, 2022