Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
amazonAmazonALAS-2024-2580
HistoryJun 19, 2024 - 7:15 p.m.

Medium: dnsmasq

2024-06-1919:15:00
alas.aws.amazon.com
4
dnsmasq
integer overflow
vulnerability
amazon linux 2
update
packages
red hat
mitre

AI Score

6.9

Confidence

Low

JSON

Issue Overview:

dnsmasq 2.9 is vulnerable to Integer Overflow via forward_query. (CVE-2023-49441)

Affected Packages:

dnsmasq

Note:

This advisory is applicable to Amazon Linux 2 (AL2) Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories.

Issue Correction:
Run yum update dnsmasq to update your system.

New Packages:

aarch64:  
    dnsmasq-2.76-16.amzn2.1.5.aarch64  
    dnsmasq-utils-2.76-16.amzn2.1.5.aarch64  
    dnsmasq-debuginfo-2.76-16.amzn2.1.5.aarch64  
  
i686:  
    dnsmasq-2.76-16.amzn2.1.5.i686  
    dnsmasq-utils-2.76-16.amzn2.1.5.i686  
    dnsmasq-debuginfo-2.76-16.amzn2.1.5.i686  
  
src:  
    dnsmasq-2.76-16.amzn2.1.5.src  
  
x86_64:  
    dnsmasq-2.76-16.amzn2.1.5.x86_64  
    dnsmasq-utils-2.76-16.amzn2.1.5.x86_64  
    dnsmasq-debuginfo-2.76-16.amzn2.1.5.x86_64

Additional References

Red Hat: CVE-2023-49441

Mitre: CVE-2023-49441

OSVersionArchitecturePackageVersionFilename
Amazon Linux2aarch64dnsmasq< 2.76-16.amzn2.1.5dnsmasq-2.76-16.amzn2.1.5.aarch64.rpm
Amazon Linux2aarch64dnsmasq-utils< 2.76-16.amzn2.1.5dnsmasq-utils-2.76-16.amzn2.1.5.aarch64.rpm
Amazon Linux2aarch64dnsmasq-debuginfo< 2.76-16.amzn2.1.5dnsmasq-debuginfo-2.76-16.amzn2.1.5.aarch64.rpm
Amazon Linux2i686dnsmasq< 2.76-16.amzn2.1.5dnsmasq-2.76-16.amzn2.1.5.i686.rpm
Amazon Linux2i686dnsmasq-utils< 2.76-16.amzn2.1.5dnsmasq-utils-2.76-16.amzn2.1.5.i686.rpm
Amazon Linux2i686dnsmasq-debuginfo< 2.76-16.amzn2.1.5dnsmasq-debuginfo-2.76-16.amzn2.1.5.i686.rpm
Amazon Linux2x86_64dnsmasq< 2.76-16.amzn2.1.5dnsmasq-2.76-16.amzn2.1.5.x86_64.rpm
Amazon Linux2x86_64dnsmasq-utils< 2.76-16.amzn2.1.5dnsmasq-utils-2.76-16.amzn2.1.5.x86_64.rpm
Amazon Linux2x86_64dnsmasq-debuginfo< 2.76-16.amzn2.1.5dnsmasq-debuginfo-2.76-16.amzn2.1.5.x86_64.rpm

Related

vulnrichment 1
nvd 1
ubuntucve 1
openvas 2
redhatcve 1
debiancve 1
nessus 3
cvelist 1
osv 1
cve 1
vulnrichment
vulnrichment
CVE-2023-49441
1976-01-01 00:00:00
nvd
nvd
CVE-2023-49441
2024-06-06 22:15:09
ubuntucve
ubuntucve
CVE-2023-49441
2024-06-06 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2024-2410)
2024-09-12 00:00:00
Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2024-2433)
2024-09-12 00:00:00
redhatcve
redhatcve
CVE-2023-49441
2024-06-07 09:07:00
debiancve
debiancve
CVE-2023-49441
2024-06-06 22:15:09
nessus
nessus
EulerOS 2.0 SP10 : dnsmasq (EulerOS-SA-2024-2410)
2024-09-12 00:00:00
EulerOS 2.0 SP10 : dnsmasq (EulerOS-SA-2024-2433)
2024-09-12 00:00:00
Amazon Linux 2 : dnsmasq (ALAS-2024-2580)
2024-06-24 00:00:00
cvelist
cvelist
CVE-2023-49441
1976-01-01 00:00:00
osv
osv
CVE-2023-49441
2024-06-06 22:15:09
cve
cve
CVE-2023-49441
2024-06-06 22:15:09

AI Score

6.9

Confidence

Low

JSON
Related for ALAS-2024-2580
vulnrichment1nvd1ubuntucve1openvas2redhatcve1debiancve1nessus3cvelist1osv1cve1