Lucene search
K

CVE-2026-12969 Dnsmasq: dnsmasq: out-of-bounds read in find_soa() due to missing extrabytes validation

🗓️ 23 Jun 2026 13:28:56Reported by redhatType 
cvelist
 cvelist
🔗 www.cve.org👁 45 Views

Dnsmasq find_soa 10-byte heap out-of-bounds read due to missing extrabytes validation in NS parsing, exploitable via crafted NXDOMAIN.

Related
Affected
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2026-12969
23 Jun 202613:28
attackerkb
CBLMariner
CVE-2026-12969 affecting package dnsmasq for versions less than 2.93-1
8 Jul 202616:02
cbl_mariner
Circl
CVE-2026-12969
23 Jun 202615:54
circl
CVE
CVE-2026-12969
23 Jun 202613:28
cve
Debian CVE
CVE-2026-12969
23 Jun 202613:28
debiancve
EUVD
EUVD-2026-38449
23 Jun 202613:28
euvd
Microsoft CVE
Dnsmasq: dnsmasq: out-of-bounds read in find_soa() due to missing extrabytes validation
27 Jun 202608:04
mscve
NVD
CVE-2026-12969
23 Jun 202614:17
nvd
OSV
DEBIAN-CVE-2026-12969
23 Jun 202614:17
osv
OSV
ECHO-A259-9BA0-438C
6 Jul 202614:51
osv
Rows per page
[
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 10",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "dnsmasq",
    "defaultStatus": "affected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:10"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 6",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "dnsmasq",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:6"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 7",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "dnsmasq",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:7"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 8",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "dnsmasq",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:8"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat Enterprise Linux 9",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "dnsmasq",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/o:redhat:enterprise_linux:9"
    ]
  },
  {
    "vendor": "Red Hat",
    "product": "Red Hat OpenShift Container Platform 4",
    "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
    "packageName": "rhcos",
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:/a:redhat:openshift:4"
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

23 Jun 2026 13:28Current
CVSS 3.15.3
EPSS0.00239
45