Lucene search
K

CVE-2026-12969

🗓️ 23 Jun 2026 13:28:56Reported by redhatType 
cve
 cve
🔗 web.nvd.nist.gov👁 33 Views

Dnsmasq has a heap out-of-bounds read in find_soa during NS parsing due to missing extrabytes validation.

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2026-12969
23 Jun 202613:28
attackerkb
CBLMariner
CVE-2026-12969 affecting package dnsmasq for versions less than 2.93-1
8 Jul 202616:02
cbl_mariner
Circl
CVE-2026-12969
23 Jun 202615:54
circl
Cvelist
CVE-2026-12969 Dnsmasq: dnsmasq: out-of-bounds read in find_soa() due to missing extrabytes validation
23 Jun 202613:28
cvelist
Debian CVE
CVE-2026-12969
23 Jun 202613:28
debiancve
EUVD
EUVD-2026-38449
23 Jun 202613:28
euvd
Microsoft CVE
Dnsmasq: dnsmasq: out-of-bounds read in find_soa() due to missing extrabytes validation
27 Jun 202608:04
mscve
NVD
CVE-2026-12969
23 Jun 202614:17
nvd
OSV
DEBIAN-CVE-2026-12969
23 Jun 202614:17
osv
OSV
ECHO-A259-9BA0-438C
6 Jul 202614:51
osv
Rows per page
NVD
Node
[
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 10",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "dnsmasq",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:10"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 6",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "dnsmasq",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:6"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "dnsmasq",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "dnsmasq",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "dnsmasq",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Container Platform 4",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "rhcos",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/a:redhat:openshift:4"
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

08 Jul 2026 15:10Current
6Medium risk
Vulners AI Score6
CVSS 3.15.3
EPSS0.00239
SSVC
33