Moshe Kol and Shlomi Oberman of JSOF discovered several
vulnerabilities in dnsmasq, a small caching DNS proxy and DHCP/TFTP
server They could result in denial of service, cache poisoning or the
execution of arbitrary code
For the stable distribution (buster), these problems have been fixed in
version 280-1+deb10u1
We recommend that you upgrade ...
A flaw was found in dnsmasq When getting a reply from a forwarded query, dnsmasq checks in the forwardc:reply_query() if the reply destination address/port is used by the pending forwarded queries However, it does not use the address/port to retrieve the exact forwarded query, substantially reducing the number of attempts an attacker on the netw ...
Synopsis
Moderate: dnsmasq security update
Type/Severity
Security Advisory: Moderate
Topic
An update for dnsmasq is now available for Red Hat Enterprise Linux 73 Advanced Update SupportRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring Sy ...
Synopsis
Moderate: dnsmasq security update
Type/Severity
Security Advisory: Moderate
Topic
An update for dnsmasq is now available for Red Hat Enterprise Linux 72 Advanced Update SupportRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring Sy ...
Synopsis
Moderate: dnsmasq security update
Type/Severity
Security Advisory: Moderate
Topic
An update for dnsmasq is now available for Red Hat Enterprise Linux 77 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring Sy ...
Synopsis
Moderate: dnsmasq security update
Type/Severity
Security Advisory: Moderate
Topic
An update for dnsmasq is now available for Red Hat Enterprise Linux 76 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring Sy ...
Synopsis
Important: dnsmasq security update
Type/Severity
Security Advisory: Important
Topic
An update for dnsmasq is now available for Red Hat Enterprise Linux 82 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring ...
Synopsis
Moderate: dnsmasq security update
Type/Severity
Security Advisory: Moderate
Topic
An update for dnsmasq is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, wh ...
Synopsis
Important: OpenShift Container Platform 4433 bug fix and security update
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Container Platform release 4433 is now available withupdates to packages and images that fix several bugs and add enhancementsThis release also includes a ...
Synopsis
Moderate: dnsmasq security update
Type/Severity
Security Advisory: Moderate
Topic
An update for dnsmasq is now available for Red Hat Enterprise Linux 74 Advanced Update Support, Red Hat Enterprise Linux 74 Telco Extended Update Support, and Red Hat Enterprise Linux 74 Update Services for SAP Sol ...
Synopsis
Important: dnsmasq security update
Type/Severity
Security Advisory: Important
Topic
An update for dnsmasq is now available for Red Hat Enterprise Linux 81 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring ...
Synopsis
Important: dnsmasq security update
Type/Severity
Security Advisory: Important
Topic
An update for dnsmasq is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, ...
Synopsis
Important: RHV-H security, bug fix, enhancement update (redhat-virtualization-host) 4313
Type/Severity
Security Advisory: Important
Topic
An update for redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7Red Hat Product Security has rated this u ...
Synopsis
Important: Red Hat Virtualization Host security bug fix and enhancement update [ovirt-444]
Type/Severity
Security Advisory: Important
Topic
An update for imgbased, redhat-release-virtualization-host, and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterpri ...
A set of previously unknown vulnerabilities in the DNS forwarder implementation of dnsmasq were disclosed on January 19, 2021 The vulnerabilities are collectively known as DNSpooq
Exploitation of these vulnerabilities could result in remote code execution or denial of service (DoS), or may allow an attacker to more easily forge DNS answers that c ...
When getting a reply from a forwarded query, dnsmasq before version 283 checks in forwardc:reply_query() which one is the forwarded query that matches the reply by only using a weak hash of the query name Due to the weak hash (CRC32 when dnsmasq is compiled without DNSSEC, SHA-1 when it is) an off-path attacker can find several different domains ...