Lucene search
OracleLinuxELSA-2023-6524HistoryNov 11, 2023 - 12:00 a.m.
dnsmasq security and bug fix update
2023-11-1100:00:00
linux.oracle.com
7
dnsmasq
bug fix
security
coverity fix
gating settings
logfile
root
local domain
dbus
resolvers
dnssec mode
crashes
edns0 size limit
cve-2023-28450
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
61.8%
[2.85-14]
- Backport Coverity fix to hide detected issue (#2156789)
[2.85-13] - Rebuild with modified gating settings
[2.85-12] - Make create logfile writeable by root (#2156789)
[2.85-11] - Do not create and search --local and --address=/x/# domains (#2209031)
[2.85-10] - Fix also dynamically set resolvers over dbus (#2186481)
[2.85-9] - Properly initialize domain parameter in dnssec mode (#2182342)
[2.85-8] - Correct possible crashes when server=/example.net/# is used (#2188712)
[2.85-7] - Limit offered EDNS0 size 1232 (CVE-2023-28450)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 9 | src | dnsmasq | < 2.85-14.el9 | dnsmasq-2.85-14.el9.src.rpm |
| oracle linux | 9 | aarch64 | dnsmasq | < 2.85-14.el9 | dnsmasq-2.85-14.el9.aarch64.rpm |
| oracle linux | 9 | aarch64 | dnsmasq-utils | < 2.85-14.el9 | dnsmasq-utils-2.85-14.el9.aarch64.rpm |
| oracle linux | 9 | src | dnsmasq | < 2.85-14.el9 | dnsmasq-2.85-14.el9.src.rpm |
| oracle linux | 9 | x86_64 | dnsmasq | < 2.85-14.el9 | dnsmasq-2.85-14.el9.x86_64.rpm |
| oracle linux | 9 | x86_64 | dnsmasq-utils | < 2.85-14.el9 | dnsmasq-utils-2.85-14.el9.x86_64.rpm |
Related
nessus
nessus
EulerOS Virtualization 2.11.1 : dnsmasq (EulerOS-SA-2023-2067)
2023-06-07 00:00:00
SUSE SLES15 Security Update : dnsmasq (SUSE-SU-2023:1930-1)
2023-04-21 00:00:00
EulerOS 2.0 SP10 : dnsmasq (EulerOS-SA-2023-1817)
2023-05-09 00:00:00
oraclelinux
oraclelinux
dnsmasq security and bug fix update
2023-11-17 00:00:00
almalinux
almalinux
Moderate: dnsmasq security and bug fix update
2023-11-14 00:00:00
Moderate: dnsmasq security and bug fix update
2023-11-07 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0153)
2023-04-24 00:00:00
Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2023-2119)
2023-06-07 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:2123-1)
2023-05-09 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-28450 affecting package dnsmasq for versions less than 2.89-2
2023-04-16 00:48:11
CVE-2023-28450 affecting package dnsmasq 2.85-1
2023-04-07 04:59:06
amazon
amazon
Medium: dnsmasq
2023-06-05 16:39:00
Medium: dnsmasq
2023-06-05 16:39:00
redhat
redhat
(RHSA-2023:7046) Moderate: dnsmasq security and bug fix update
2023-11-14 08:43:42
(RHSA-2023:6524) Moderate: dnsmasq security and bug fix update
2023-11-07 06:07:40
(RHSA-2024:1544) Important: dnsmasq security and bug fix update
2024-03-27 14:45:58
osv
osv
dnsmasq vulnerability
2023-04-20 12:57:33
CVE-2023-28450
2023-03-15 21:15:09
Moderate: dnsmasq security and bug fix update
2023-11-14 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: dnsmasq-2.89-2.fc37
2023-04-06 01:57:03
[SECURITY] Fedora 38 Update: dnsmasq-2.89-2.fc38
2023-04-17 01:21:38
altlinux
altlinux
Security fix for the ALT Linux 10 package dnsmasq version 2.89-alt2
2023-03-31 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-05-02 07:04:30
ubuntu
ubuntu
Dnsmasq vulnerability
2023-04-20 00:00:00
Dnsmasq vulnerabilities
2024-02-26 00:00:00
Dnsmasq vulnerabilities
2024-04-24 00:00:00
githubexploit
githubexploit
Exploit for Vulnerability in Thekelleys Dnsmasq
2023-04-05 05:33:09
cve
cve
CVE-2023-28450
2023-03-15 21:15:09
alpinelinux
alpinelinux
CVE-2023-28450
2023-03-15 21:15:09
prion
prion
Design/Logic Flaw
2023-03-15 21:15:00
redos
redos
ROS-20230419-02
2023-04-19 00:00:00
mageia
mageia
Updated dnsmasq packages fix security vulnerability
2023-04-24 03:20:26
redhatcve
redhatcve
CVE-2023-28450
2023-03-16 09:42:25
debiancve
debiancve
CVE-2023-28450
2023-03-15 21:15:09
rosalinux
rosalinux
Advisory ROSA-SA-2023-2283
2023-10-24 14:20:01
ubuntucve
ubuntucve
CVE-2023-28450
2023-03-15 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-3.0-0563
2023-04-05 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0370
2023-04-05 00:00:00
Important Photon OS Security Update - PHSA-2023-5.0-0041
2023-06-29 00:00:00
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
61.8%
Related for ELSA-2023-6524