Dnsmasq Buffer Error Vulnerability

DNSmasq is a DNS configuration tool by Simon Kelley Personal Developer. Dnsmasq suffers from a buffer error vulnerability that stems from a heap-based buffer overflow in dnsmasq that sorts an rrset before validating it with DNSSEC data in an unsolicited DNS response...

dnsmasq: heap-based buffer overflow in sort_rrset() when DNSSEC is enabled

A flaw was found in dnsmasq. A heap-based buffer overflow was discovered in the way RRSets are sorted before validating with DNSSEC data. An attacker on the network, who can forge DNS replies such as that they are accepted as valid, could use this flaw to cause a buffer overflow with arbitrary da...