29 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-25687
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the...
SUSE: Security Advisory (SUSE-SU-2021:14603-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2021:0163-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-25687 affecting package dnsmasq 2.79-11
CVE-2020-25687 affecting package dnsmasq 2.79-11. An upgraded version of the package is available that resolves this issue...
SUSE: Security Advisory (SUSE-SU-2021:0166-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2021-1758)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2604-1] dnsmasq security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2604-1 [email protected] https://www.debian.org/lts/security/ March 22, 2021 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package...
EulerOS Virtualization for ARM 64 3.0.2.0 : dnsmasq (EulerOS-SA-2021-1389)
According to the versions of the dnsmasq packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A flaw was found in dnsmasq before version 2.83. When receiving a query, dnsmasq does not check for an existing pendi...
Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2021-1551)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Slackware 14.0 / 14.1 / 14.2 / current : dnsmasq (SSA:2021-040-01)
New dnsmasq packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2021-040-01. The text itself is copyright C Slackware...
[slackware-security] dnsmasq
New dnsmasq packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/dnsmasq-2.84-i586-1slack14.2.txz: Upgraded. This update fixes bugs and remotely exploitable security issues: Use the...
Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2021-1244)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 4844-1] dnsmasq security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4844-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 02, 2021 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4844-1] dnsmasq security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4844-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 02, 2021 https://www.debian.org/security/faq -...
CentOS 8 : dnsmasq (CESA-2021:0150)
The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:0150 advisory. - dnsmasq: heap-based buffer overflow in sortrrset when DNSSEC is enabled CVE-2020-25681 - dnsmasq: buffer overflow in extractname due to missing lengt...
Photon OS 1.0: Dnsmasq PHSA-2021-1.0-0356
An update of the dnsmasq package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-1.0-0356. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
openSUSE Security Update : dnsmasq (openSUSE-2021-124)
This update for dnsmasq fixes the following issues : - bsc1177077: Fixed DNSpooq vulnerabilities - CVE-2020-25684, CVE-2020-25685, CVE-2020-25686: Fixed multiple Cache Poisoning attacks. - CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25687: Fixed multiple potential Heap-based overflow...
Security fix for the ALT Linux 10 package dnsmasq version 2.83-alt1
Jan. 22, 2021 Mikhail Efremov 2.83-alt1 - Use useradd -N instead of -n. - Updated to 2.83 fixes: CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687...
Fedora: Security Advisory for dnsmasq (FEDORA-2021-84440e87ba)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2020-25687
CVE-2020-25687 affects dnsmasq and is fixed in version 2.83. Affected component: DNSSEC-enabled processing in dnsmasq where a heap-based buffer overflow can occur. The root cause is insufficient length checks in rfc1035.c:extract_name() and related code paths in sort_rrset()/get_rdata(), enabling...