MiracleLinux 7 : dnsmasq-2.76-17.3.0.1.el7.AXS7 (AXSA:2024-8624:05)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8624:05 advisory. change EDNS.0 UDP packet size from 4096 to 1232 CVE-2023-28450 CVEs: CVE-2023-28450 An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS....

MiracleLinux 7 : glibc-2.17-222.el7 (AXSA:2018-2926:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-2926:01 advisory. glibc: realpath buffer underflow when getcwd returns relative path allows privilege escalation CVE-2018-1000001 glibc: Buffer overflow in glob with...

EUVD-2016-7949

Malware in sbrugna...

EUVD-2015-8596

Malware in sbrugna...

[SECURITY] Fedora 39 Update: python-dns-2.6.1-1.fc39

dnspython is a DNS toolkit for Python. It supports almost all record types. It can be used for queries, zone transfers, and dynamic updates. It supports TSIG authenticated messages and EDNS0. dnspython provides both high and low level access to DNS. The high level classes perform queries for data...

[SECURITY] Fedora 38 Update: python-dns-2.3.0-3.fc38

dnspython is a DNS toolkit for Python. It supports almost all record types. It can be used for queries, zone transfers, and dynamic updates. It supports TSIG authenticated messages and EDNS0. dnspython provides both high and low level access to DNS. The high level classes perform queries for data...

[SECURITY] Fedora 40 Update: python-dns-2.6.1-1.fc40

dnspython is a DNS toolkit for Python. It supports almost all record types. It can be used for queries, zone transfers, and dynamic updates. It supports TSIG authenticated messages and EDNS0. dnspython provides both high and low level access to DNS. The high level classes perform queries for data...

USN-6657-2 dnsmasq vulnerabilities

USN-6657-1 fixed several vulnerabilities in Dnsmasq. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: Elias Heftrig, Haya Schulmann, Niklas Vogel, and Michael Waidner discovered that Dnsmasq icorrectly handled validating DNSSEC...

dnsmasq security and bug fix update

2.79-31 - Do not create and search --local and --address=/x/ domains 2233542 2.79-30 - Make create logfile writeable by root 2156789 2.79-29 - Fix also dynamically set resolvers over dbus 2186481 2.79-28 - Correct possible crashes when server=/example.net/ is used 2186481 2.79-27 - Limit offered...

dnsmasq security and bug fix update

2.85-14 - Backport Coverity fix to hide detected issue 2156789 2.85-13 - Rebuild with modified gating settings 2.85-12 - Make create logfile writeable by root 2156789 2.85-11 - Do not create and search --local and --address=/x/ domains 2209031 2.85-10 - Fix also dynamically set resolvers over dbu...

SUSE SLES15 Security Update : dnsdist (SUSE-SU-2023:2777-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2777-1 advisory. - An issue has been found in dnsdist before 1.2.0 in the way EDNS0 OPT records are handled when parsing responses from a backend...

openSUSE 15 Security Update : dnsdist (SUSE-SU-2023:2760-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2760-1 advisory. - An issue has been found in dnsdist before 1.2.0 in the way EDNS0 OPT records are handled when parsing responses from a backend. When dnsdist is...

SUSE CVE-2015-8719

The dissectdnsanswer function in epan/dissectors/packet-dns.c in the DNS dissector in Wireshark 1.12.x before 1.12.9 mishandles the EDNS0 Client Subnet option, which allows remote attackers to cause a denial of service application crash via a crafted packet...

SUSE CVE-2016-7069

An issue has been found in dnsdist before 1.2.0 in the way EDNS0 OPT records are handled when parsing responses from a backend. When dnsdist is configured to add EDNS Client Subnet to a query, the response may contain an EDNS0 OPT record that has to be removed before forwarding the response to th...

Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2019-1423)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2017-14495

A memory exhaustion flaw was found in dnsmasq in the EDNS0 code. An attacker could send crafted DNS packets which would trigger memory allocations which would never be freed, leading to unbounded memory consumption and eventually a crash. This issue only affected configurations using one of the...

Denial Of Service (DoS)

dnsmasq is vulnerable to denial of serviceDoS attacks. A remote user could send specially crafted DNS packets to trigger an integer underflow and subsequent buffer over-read error in the EDNS0 code and cause the target service to crash. This issue only affects configurations using one of the...

EulerOS Virtualization for ARM 64 3.0.1.0 : dnsmasq (EulerOS-SA-2019-1380)

According to the versions of the dnsmasq packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - An information leak was found in dnsmasq in the DHCPv6 relay code. An attacker on the local network could send crafte...

DNS Flag Day & Akamai

Written by Jon Reed & Barry Greene DNS Flag Day is an industry event that promotes the adoption of the most up-to-date DNS features and ensures that non-standards-compliant servers don't negatively impact the global performance of the Internet. The 2019 DNS Flag Day will remove a number of...

EulerOS 2.0 SP2 : dnsmasq (EulerOS-SA-2018-1285)

According to the versions of the dnsmasq packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A memory exhaustion flaw was found in dnsmasq in the EDNS0 code. An attacker could send crafted DNS packets which would trigger memory...