Lucene search
K

1652 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/19 12:0 a.m.57 views

SUSE SLED15 / SLES15 Security Update : dnsmasq (SUSE-SU-2026:1934-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1934-1 advisory. This update for dnsmasq fixes the following issues Security issues: - CVE-2026-4890: DoS vulnerability in the...

8.8CVSS6.1AI score0.07237EPSS
Exploits4References24
SUSE Linux
SUSE Linux
added 2026/05/18 7:40 a.m.8 views

Security update for dnsmasq

This update for dnsmasq fixes the following issues Security issues: CVE-2026-4890: DoS vulnerability in the DNSSEC validation bsc1265001. CVE-2026-4891: heap-based out-of-bounds read vulnerability in the DNSSEC validation bsc1265002. CVE-2026-4892: heap-based out-of-bounds write vulnerability in...

9.2CVSS6AI score0.07237EPSS
Exploits4References34
OSV
OSV
added 2026/05/18 7:40 a.m.11 views

SUSE-SU-2026:1934-1 Security update for dnsmasq

This update for dnsmasq fixes the following issues Security issues: - CVE-2026-4890: DoS vulnerability in the DNSSEC validation bsc1265001. - CVE-2026-4891: heap-based out-of-bounds read vulnerability in the DNSSEC validation bsc1265002. - CVE-2026-4892: heap-based out-of-bounds write vulnerabili...

8.8CVSS6AI score0.07237EPSS
Exploits4References17
OSV
OSV
added 2026/05/15 10:44 a.m.5 views

SUSE-SU-2026:21677-1 Security update for dnsmasq

This update for dnsmasq fixes the following issues Security issues: - CVE-2026-2291: dnsmasq can be abused to record false cached data enabling DoS or attacker redirect bsc1258251. - CVE-2026-4890: DoS vulnerability in the DNSSEC validation bsc1265001. - CVE-2026-4891: heap-based out-of-bounds re...

8.8CVSS6AI score0.07237EPSS
Exploits4References17
Mageia
Mageia
added 2026/05/14 2:43 a.m.12 views

Updated dnsmasq packages fix security vulnerabilities

CVE-2026-2291: dnsmasqs extractname function can be abused to cause a heap buffer overflow, allowing an attacker to inject false DNS cache entries, which could result in DNS lookups to redirect to an attacker-controlled IP address, or to cause a DoS. CVE-2026-4890: A Denial of Service DoS...

8.8CVSS6.4AI score0.07237EPSS
Exploits4References2
OSV
OSV
added 2026/05/13 4:34 p.m.10 views

SUSE-SU-2026:21640-1 Security update for dnsmasq

This update for dnsmasq fixes the following issues Security issues: - CVE-2026-2291: dnsmasq can be abused to record false cached data enabling DoS or attacker redirect bsc1258251. - CVE-2026-4890: DoS vulnerability in the DNSSEC validation bsc1265001. - CVE-2026-4891: heap-based out-of-bounds re...

8.8CVSS6AI score0.07237EPSS
Exploits4References19
OSV
OSV
added 2026/05/13 4:34 p.m.5 views

SUSE-SU-2026:21788-1 Security update for dnsmasq

This update for dnsmasq fixes the following issues Security issues: - CVE-2026-2291: dnsmasq can be abused to record false cached data enabling DoS or attacker redirect bsc1258251. - CVE-2026-4890: DoS vulnerability in the DNSSEC validation bsc1265001. - CVE-2026-4891: heap-based out-of-bounds re...

8.8CVSS6AI score0.07237EPSS
Exploits4References19
OSV
OSV
added 2026/05/13 4:33 p.m.8 views

OPENSUSE-SU-2026:20748-1 Security update for dnsmasq

This update for dnsmasq fixes the following issues Security issues: - CVE-2026-2291: dnsmasq can be abused to record false cached data enabling DoS or attacker redirect bsc1258251. - CVE-2026-4890: DoS vulnerability in the DNSSEC validation bsc1265001. - CVE-2026-4891: heap-based out-of-bounds re...

8.8CVSS6AI score0.07237EPSS
Exploits4References18
ATTACKERKB
ATTACKERKB
added 2026/05/11 4:47 p.m.8 views

CVE-2026-4891

A heap-based out-of-bounds read vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via a crafted DNS packet...

5.3CVSS5.8AI score0.06226EPSS
Exploits0References8
AlpineLinux
AlpineLinux
added 2026/05/11 4:47 p.m.14 views

CVE-2026-4890

A Denial of Service DoS vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via a crafted DNS packet...

7.5CVSS5.8AI score0.07237EPSS
Exploits0
CVE
CVE
added 2026/05/11 4:47 p.m.52 views

CVE-2026-4890

Dnsmasq is affected by CVE-2026-4890, a DoS vulnerability in DNSSEC validation. The issue is described as an infinite-loop flaw in DNSSEC validation, which can cause the dnsmasq service to crash or become unresponsive when processing a crafted DNS response. Affected component: dnsmasq’s DNSSEC va...

7.5CVSS5.8AI score0.07237EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2026/05/11 12:0 p.m.10 views

CVE-2026-4891

A heap-based out-of-bounds read vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via a crafted DNS packet...

5.3CVSS5.8AI score0.06226EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/11 2:0 a.m.13 views

Important: Red Hat Security Advisory: bind security update

An update for bind is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System...

7.5CVSS7.5AI score0.01545EPSS
Exploits0References2
CERT
CERT
added 2026/05/11 12:0 a.m.16 views

dnsmasq contains several vulnerabilities, including attacker DNS redirect, privilege escalation, and heap manipulation

Overview dnsmasq is affected by multiple memory safety and input validation vulnerabilities, including heap buffer overflows, heap corruption, and code execution flaws. Collectively, these vulnerabilities enable attackers to poison cached DNS records, bypass security controls, crash the dnsmasq...

8.8CVSS6.6AI score0.07237EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.8 views

RHEL 8 : bind (RHSA-2026:16064)

"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:16064 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named %NASLMINLEVEL...

7.5CVSS5.8AI score0.01545EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-4890

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Denial of Service DoS vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via a crafted DNS packet...

7.5CVSS5.8AI score0.07237EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.16 views

Linux Distros Unpatched Vulnerability : CVE-2026-4891

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based out-of-bounds read vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via a crafted DNS packet...

7.5CVSS5.5AI score0.06226EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.11 views

DNSmasq 安全漏洞

DNSmasq is a DNS configuration tool developed by Simon Kelley. DNSmasq has a security vulnerability, which stems from heap-based out-of-bound reads during DNSSEC verification. This vulnerability allows remote attackers to cause denial-of-service attacks through specially crafted DNS packets...

5.3CVSS5.8AI score0.06226EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/09 12:0 a.m.10 views

PT-2026-39699

Name of the Vulnerable Software and Affected Versions dnsmasq affected versions not specified Description A heap-based out-of-bounds read in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service by sending a crafted DNS packet. A heap-based out-of-bounds read occur...

8.8CVSS5.8AI score0.07237EPSS
Exploits3References91
Github Security Blog
Github Security Blog
added 2026/05/07 2:59 a.m.20 views

hickory-proto: NSEC3 closest-encloser proof validation enters unbounded loop on cross-zone responses

The NSEC3 closest-encloser proof validation in hickory-proto's 0.25.0-alpha.3 ... 0.25.2 and hickory-net's 0.26.0-alpha.1 .. 0.26.0 DnssecDnsHandle walks from the QNAME up to the SOA owner name, building a list of candidate encloser names. The iterator used assumes the QNAME is a descendant of th...

5.8AI score
Exploits0References4Affected Software2
Rows per page
Query Builder