Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Gentoo GLSA-200809-02 Normal: Dnsmasq Denial of Service Exploit

gentoo
Calendar Grey September 4, 2008
Dist Gentoo Esm H88
Issues found in Dnsmasq may enable denial of service and DNS forgery in Gentoo environments. Upgrade is advised.
Two vulnerabilities in dnsmasq might allow for a Denial of Service or spoofing of DNS replies.

Summary

Gentoo Linux Security Advisory GLSA 200809-02 https://security.gentoo.org/ Severity: Normal Title: dnsmasq: Denial of Service and DNS spoofing Date: September 04, 2008 Bugs: #231282, #232523 ID: 200809-02

Synopsis ======= Two vulnerabilities in dnsmasq might allow for a Denial of Service or spoofing of DNS replies.
Background ========= Dnsmasq is a lightweight and easily-configurable DNS forwarder and DHCP server.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-dns/dnsmasq < 2.45 >= 2.45
========== * Dan Kaminsky of IOActive reported that dnsmasq does not randomize UDP source ports when forwarding DNS queries to a recursing DNS server (CVE-20...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround