OESA-2024-1905 dnsmasq security update

Dnsmasq provides network infrastructure for small networks: DNS, DHCP, router advertisement and network boot. It is designed to be lightweight and have a small footprint, suitable for resource constrained routers and firewalls. It has also been widely used for tethering on smartphones and portabl...

OESA-2024-1904 dnsmasq security update

Dnsmasq provides network infrastructure for small networks: DNS, DHCP, router advertisement and network boot. It is designed to be lightweight and have a small footprint, suitable for resource constrained routers and firewalls. It has also been widely used for tethering on smartphones and portabl...

DEBIAN-CVE-2023-49441

dnsmasq 2.9 is vulnerable to Integer Overflow via forwardquery...

CVE-2023-49441

dnsmasq 2.9 is vulnerable to Integer Overflow via forwardquery...

UBUNTU-CVE-2023-49441

dnsmasq 2.9 is vulnerable to Integer Overflow via forwardquery...

PT-2024-13737 · Dnsmasq +1 · Dnsmasq +1

Name of the Vulnerable Software and Affected Versions: dnsmasq version 2.9 Description: The issue is related to an Integer Overflow via forward query. Recommendations: For dnsmasq version 2.9, at the moment, there is no information about a newer version that contains a fix for this vulnerability...

dnsmasq Security Vulnerabilities

dnsmasq is a lightweight DNS forwarding and DHCP and TFTP server written in C. It has a security vulnerability in dnsmasq 2.9. A security vulnerability exists in dnsmasq version 2.9, which stems from the presence of an integer overflow vulnerability via forwardquery...

Information Disclosure

dnsmasq is vulnerable to information disclosure. The vulnerability exists because when getting a reply from a forwarded query, dnsmasq checks in the forward.c:replyquery if the reply destination address/port is used by the pending forwarded queries. However, it does not use the address/port to...

DEBIAN-CVE-2020-25685

A flaw was found in dnsmasq before version 2.83. When getting a reply from a forwarded query, dnsmasq checks in forward.c:replyquery, which is the forwarded query that matches the reply, by only using a weak hash of the query name. Due to the weak hash CRC32 when dnsmasq is compiled without DNSSE...

dnsmasq: loose address/port check in reply_query() makes forging replies easier for an off-path attacker

A flaw was found in dnsmasq. When getting a reply from a forwarded query, dnsmasq checks in the forward.c:replyquery if the reply destination address/port is used by the pending forwarded queries. However, it does not use the address/port to retrieve the exact forwarded query, substantially...