Explore top 10 tips to secure your open-source projects now. Read More
×Gentoo Linux Security Advisory GLSA 200809-02
https://security.gentoo.org/
Severity: Normal
Title: dnsmasq: Denial of Service and DNS spoofing
Date: September 04, 2008
Bugs: #231282, #232523
ID: 200809-02
Synopsis
=======
Two vulnerabilities in dnsmasq might allow for a Denial of Service or
spoofing of DNS replies.
Background
=========
Dnsmasq is a lightweight and easily-configurable DNS forwarder and DHCP
server.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 net-dns/dnsmasq < 2.45 >= 2.45
==========
* Dan Kaminsky of IOActive reported that dnsmasq does not randomize
UDP source ports when forwarding DNS queries to a recursing DNS
server (CVE-20...
style>.gentoo_availability{display:block;}
Get the latest Linux and open source security news straight to your inbox.