Dnsmasq Multiple Vulnerabilities
Release Date:
21 Jan 2021
4497
Views
RISK: Medium Risk
TYPE: Servers - Network Management
Multiple vulnerabilities were identified in Dnsmasq, a remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution, data manipulation and security restriction bypass on the targeted system.
Impact
- Denial of Service
- Remote Code Execution
- Data Manipulation
- Security Restriction Bypass
System / Technologies affected
- Version 2.82 and prior
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- The vendor has issued a fix (2.83):
http://www.thekelleys.org.uk/dnsmasq/doc.html
Vulnerability Identifier
Source
Related Link
- http://www.thekelleys.org.uk/dnsmasq/doc.html
- https://www.suse.com/support/update/announcement/2021/suse-su-202114604-1
- https://www.suse.com/support/update/announcement/2021/suse-su-20210166-1
- https://www.suse.com/support/update/announcement/2021/suse-su-20210163-1
- https://www.suse.com/support/update/announcement/2021/suse-su-20210162-1
- https://www.suse.com/support/update/announcement/2021/suse-su-202114603-1
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnsmasq-dns-2021-c5mrdf3g
- https://www.auscert.org.au/bulletins/ESB-2021.0218/
- https://us-cert.cisa.gov/ics/advisories/icsa-21-019-01
Related Tags
Share with