23 matches found
CVE-2026-31633 rxrpc: Fix integer overflow in rxgk_verify_response()
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix integer overflow in rxgkverifyresponse In rxgkverifyresponse, there's a potential integer overflow due to rounding up tokenlen before checking it, thereby allowing the length check to be bypassed. Fix this by checking...
EUVD-2020-23143
Malware in sbrugna...
NewStart CGSL MAIN 7.02 : dnsmasq Vulnerability (NS-SA-2025-0164)
The remote NewStart CGSL host, running version MAIN 7.02, has dnsmasq packages installed that are affected by a vulnerability: - An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020. CVE-2023-284...
SUSE-SU-2025:0071-1 Security update for dnsmasq
This update for dnsmasq fixes the following issues: - Version update to 2.90: - CVE-2023-50387: Fixed a Denial Of Service while trying to validate specially crafted DNSSEC responses. bsc1219823 - CVE-2023-50868: Fixed a Denial Of Service while trying to validate specially crafted DNSSEC responses...
Moderate: Red Hat Security Advisory: dnsmasq security update
An update for dnsmasq is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
RHEL 7 : dnsmasq (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dnsmasq: fixed outgoing port used when --server is used with an interface name CVE-2021-3448 - A...
Important: Red Hat Security Advisory: dnsmasq security update
An update for dnsmasq is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
MGASA-2024-0041 Updated dnsmasq packages fix security vulnerabilities
This updated dnsmasq package fixes security issues: Certain DNSSEC aspects of the DNS protocol allow a remote attacker to trigger a denial of service via extreme consumption of resource caused by DNSSEC query or response: - KeyTrap - Extreme CPU consumption in DNSSEC validator. CVE-2023-50387 -...
Updated dnsmasq packages fix security vulnerabilities
This updated dnsmasq package fixes security issues: Certain DNSSEC aspects of the DNS protocol allow a remote attacker to trigger a denial of service via extreme consumption of resource caused by DNSSEC query or response: - KeyTrap - Extreme CPU consumption in DNSSEC validator. CVE-2023-50387 -...
ALSA-2023:6524 Moderate: dnsmasq security and bug fix update
The dnsmasq packages contain Dnsmasq, a lightweight DNS Domain Name Server forwarder and DHCP Dynamic Host Configuration Protocol server. Security Fixes: dnsmasq: default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 CVE-2023-28450 For more details about the security issues,...
EulerOS Virtualization 3.0.6.6 : dnsmasq (EulerOS-SA-2023-2421)
According to the versions of the dnsmasq packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in dnsmasq in versions before 2.85. When configured to use a specific server for a given network interface,...
EulerOS 2.0 SP5 : dnsmasq (EulerOS-SA-2023-2141)
According to the versions of the dnsmasq packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Fl...
Medium: dnsmasq
Issue Overview: An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020. CVE-2023-28450 Affected Packages: dnsmasq Issue Correction: Run yum update dnsmasq or yum update --advisory ALAS-2023-1758 to...
EulerOS Virtualization 2.9.0 : dnsmasq (EulerOS-SA-2023-2015)
According to the versions of the dnsmasq package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232...
SUSE SLES12 Security Update : dnsmasq (SUSE-SU-2023:2123-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:2123-1 advisory. - CVE-2023-28450: Fixed default maximum size for EDNS.0 UDP packets bsc1209358. Tenable has extracted the preceding description block direct...
MGASA-2023-0153 Updated dnsmasq packages fix security vulnerability
A flaw was found in Dnsmasq. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020. CVE-2023-28450...
SUSE SLES15 Security Update : dnsmasq (SUSE-SU-2023:1930-1)
The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2023:1930-1 advisory. - CVE-2023-28450: Fixed default maximum size for EDNS.0 UDP packets bsc1209358. Tenable has extracted the preceding description block directly from the...
ROS-20230419-02
The vulnerability in the Dnsmasq DNS server is related to the maximum EDNS.0 UDP packet size by default it was set to 4096, but should be 1232. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
CVE-2023-28450
An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020...
Design/Logic Flaw
An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020...