thekelleys dnsmasq 2.85 Release Candidate 3

CPE Details

thekelleys dnsmasq 2.85 Release Candidate 3
2.85
2021-04-12
16h37 +00:00
2021-04-23
13h25 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:thekelleys:dnsmasq:2.85:rc3:*:*:*:*:*:*

Informations

Vendor

thekelleys

Product

dnsmasq

Version

2.85

Update

rc3

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-50387 2024-02-13 23h00 +00:00 Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records.
7.5
High
CVE-2023-28450 2023-03-15 00h00 +00:00 An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020.
7.5
High
CVE-2022-0934 2022-08-29 12h03 +00:00 A single-byte, non-arbitrary write/use-after-free flaw was found in dnsmasq. This flaw allows an attacker who sends a crafted packet processed by dnsmasq, potentially causing a denial of service.
7.5
High