Dnsmasq version 2.72 does not properly check the return value of the setup_reply() function called during a tcp connection (by the tcp_request() function). This return value is then used as a size argument in a function which writes data on the client's connection. This may lead, upon successful exploitation, to reading the heap memory of dnsmasq.
15ce37ec8c0427813ec7b2856b386f96b7f86c6dd544e1d7626c85e4d9919940Ubuntu Security Notice 6034-1 - It was discovered that Dnsmasq was sending large DNS messages over UDP, possibly causing transmission failures due to IP fragmentation. This update lowers the default maximum size of DNS messages to improve transmission reliability over UDP.
c4992069af8cbbce8803ac455250932b08babf1c097f9d0ca6ff6c63035da835Red Hat Security Advisory 2022-8070-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server. Issues addressed include a use-after-free vulnerability.
3090f4f045aa0205d9ec3eff6d9421b2782bdcab3b27e1dc1ead773f2a4ed80dRed Hat Security Advisory 2022-7633-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server. Issues addressed include a use-after-free vulnerability.
5c7119799e3e6420f4922acff05d1bd2ebda0ed0a7fb8572b0ec218b25d3c607Ubuntu Security Notice 4976-2 - USN-4976-1 fixed a vulnerability in Dnsmasq. This update provides the corresponding update for Ubuntu 16.04 ESM. Dnsmasq has been updated to 2.79-1 for Ubuntu 16.04 ESM in order to fix some security issues. Petr Mensik discovered that Dnsmasq incorrectly randomized source ports in certain configurations. A remote attacker could possibly use this issue to facilitate DNS cache poisoning attacks.
4c8914290f3fa1d40ef1781cbce5f4b22938d1fd70dc2de6e5737e56ea414c4fUbuntu Security Notice 5408-1 - Petr Menšík and Richard Johnson discovered that Dnsmasq incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code or expose sensitive information.
c554abd3b87cedcca8fb710f87269836e34176f35f87a48972d115b1baeadfb0Red Hat Security Advisory 2021-4153-02 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server.
52a4379af6fc764b02372f28934aab522028730587c81acd3d6097f1f500f552Debian Linux Security Advisory 4983-1 - Pavel Toporkov discovered a vulnerability in Neutron, the OpenStack virtual network service, which allowed a reconfiguration of dnsmasq via crafted dhcp_extra_opts parameters.
ae710f0c5eab343d5d187ff386bcfbb45872e736dea1d7e2fdeed1e91997000bUbuntu Security Notice 4976-1 - Petr Mensik discovered that Dnsmasq incorrectly randomized source ports in certain configurations. A remote attacker could possibly use this issue to facilitate DNS cache poisoning attacks.
2212e9df1205123c33fd5f3260226e53e71124f8f9d77b357eea7fca92bb7dcdGentoo Linux Security Advisory 202105-20 - Use of insufficient randomness in Dnsmasq might lead to DNS Cache Poisoning. Versions less than 2.85 are affected.
c4a749bf979e951d3916c4cb26af82af85db91eb12f95d409bb4d7c46a7b5af7Ubuntu Security Notice 4924-1 - It was discovered that Dnsmasq incorrectly handled certain wildcard synthesized NSEC records. A remote attacker could possibly use this issue to prove the non-existence of hostnames that actually exist. It was discovered that Dnsmasq incorrectly handled certain large DNS packets. A remote attacker could possibly use this issue to cause Dnsmasq to crash, resulting in a denial of service. Various other issues were also addressed.
5d79f87d4be36dea5f66dea9fda219d5d8c0d61f0996c4485a733b8654240079Debian Linux Security Advisory 4844-1 - Moshe Kol and Shlomi Oberman of JSOF discovered several vulnerabilities in dnsmasq, a small caching DNS proxy and DHCP/TFTP server. They could result in denial of service, cache poisoning or the execution of arbitrary code.
e8796fb0d51a874f14fa08f40ef54df04e7a41a8ec5691ce2db533b0966e1ebfUbuntu Security Notice 4698-2 - USN-4698-1 fixed vulnerabilities in Dnsmasq. The updates introduced regressions in certain environments related to issues with multiple queries, and issues with retries. This update fixes the problem. Moshe Kol and Shlomi Oberman discovered that Dnsmasq incorrectly handled memory when sorting RRsets. A remote attacker could use this issue to cause Dnsmasq to hang, resulting in a denial of service, or possibly execute arbitrary code. Moshe Kol and Shlomi Oberman discovered that Dnsmasq incorrectly handled extracting certain names. A remote attacker could use this issue to cause Dnsmasq to hang, resulting in a denial of service, or possibly execute arbitrary code. Moshe Kol and Shlomi Oberman discovered that Dnsmasq incorrectly implemented address/port checks. A remote attacker could use this issue to perform a cache poisoning attack. Moshe Kol and Shlomi Oberman discovered that Dnsmasq incorrectly implemented query resource name checks. A remote attacker could use this issue to perform a cache poisoning attack. Moshe Kol and Shlomi Oberman discovered that Dnsmasq incorrectly handled multiple query requests for the same resource name. A remote attacker could use this issue to perform a cache poisoning attack. It was discovered that Dnsmasq incorrectly handled memory during DHCP response creation. A remote attacker could possibly use this issue to cause Dnsmasq to consume resources, leading to a denial of service. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. Various other issues were also addressed.
e42a5bdd054f191f80e2ffa56b1efcc9969c7a22e49b0f34c75af8093966adecRed Hat Security Advisory 2021-0245-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server.
7326769caf10d825eb5619b9f2d8672b070282d65b70e5a85363a2d1c93e45d0Red Hat Security Advisory 2021-0240-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server.
c2e3eb73bcb1335246ba4b75aa396d2cda0e351c17f60e52b2aed87cda2e30f6Gentoo Linux Security Advisory 202101-17 - Multiple vulnerabilities have been found in Dnsmasq, the worst of which may allow remote attackers to execute arbitrary code. Versions less than 2.83 are affected.
d74f76a7c852d4e7f3291ec2d0874f62ca39a4044f320676208797e0e34e79a6Red Hat Security Advisory 2021-0155-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server.
54a1700ca996bed8d204dd3114fd45a0e703d3d1ac9e22020de24b48a9926ae8Red Hat Security Advisory 2021-0154-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server.
601d693d3116b894a5266fff04bebe2a7036af4dd8ba10f3a8eb1a4898eeb5f6Red Hat Security Advisory 2021-0153-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server.
fe0023c6ee15192e0d3139b7bd4dcbcd90821f565b10180db88ba58908ca07a0Red Hat Security Advisory 2021-0156-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server.
1e4e0f76e6eb80ac82ec2d706968beb107e3975182cf9f9da50a976d22dad8dfRed Hat Security Advisory 2021-0151-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server. Issues addressed include a buffer overflow vulnerability.
5cacb245ded9cb0275435d6d03ed5404c38a386848e0aebb23e203773a840c87Red Hat Security Advisory 2021-0152-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server. Issues addressed include a buffer overflow vulnerability.
9b59a676f7ab63b37837fc8aca08d6a1fcfb43fdce5b00d2ab7a4fb5581caad6Red Hat Security Advisory 2021-0150-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server. Issues addressed include a buffer overflow vulnerability.
edf41284ec526e49fbfc0b6cad88932a74ce20dec21784a5789b3eaf7d4ba150Ubuntu Security Notice 4698-1 - Moshe Kol and Shlomi Oberman discovered that Dnsmasq incorrectly handled memory when sorting RRsets. A remote attacker could use this issue to cause Dnsmasq to hang, resulting in a denial of service, or possibly execute arbitrary code. Moshe Kol and Shlomi Oberman discovered that Dnsmasq incorrectly handled extracting certain names. A remote attacker could use this issue to cause Dnsmasq to hang, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
9c1f6232a679d122ff8827bec18d6a2293e60660e241bd6df7f98f81f663017aRed Hat Security Advisory 2020-3878-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server. Issues addressed include a memory leak vulnerability.
76afa3a3f0ebf952fb0f690f107edd024352d37542ca9dcc0b31c6b2227d35acRed Hat Security Advisory 2020-1715-01 - The dnsmasq packages contain Dnsmasq, a lightweight DNS forwarder and DHCP server. Issues addressed include a memory leak vulnerability.
30d2ee7b7306b62f3c302608065d8421feb559d05f4c5b5d16c4dfd1e34c24a5
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed