MGASA-2023-0153 - Updated dnsmasq packages fix security vulnerability

Publication date: 24 Apr 2023
URL: https://advisories.mageia.org/MGASA-2023-0153.html
Type: security
Affected Mageia releases: 8
CVE: CVE-2023-28450

A flaw was found in Dnsmasq. The default maximum EDNS.0 UDP packet size
was set to 4096 but should be 1232 because of DNS Flag Day 2020.
(CVE-2023-28450)

References:
- https://bugs.mageia.org/show_bug.cgi?id=31770
- https://www.dnsflagday.net/2020/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28450

SRPMS:
- 8/core/dnsmasq-2.85-6.mga8

Mageia 2023-0153: dnsmasq security update

A flaw was found in Dnsmasq

Summary

A flaw was found in Dnsmasq. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020. (CVE-2023-28450)

References

- https://bugs.mageia.org/show_bug.cgi?id=31770

- https://www.dnsflagday.net/2020/

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28450

Resolution

MGASA-2023-0153 - Updated dnsmasq packages fix security vulnerability

SRPMS

- 8/core/dnsmasq-2.85-6.mga8

Severity

Publication date: 24 Apr 2023

URL: https://advisories.mageia.org/MGASA-2023-0153.html

Type: security

CVE: CVE-2023-28450

Important Linux Kernel DoS, Code Execution Bugs Fixed

Jun 3, 2023

Important Fix for c-ares DoS Bug Released

Jun 1, 2023

Linux Kernel DoS, Info Disclosure Bugs Fixed

May 26, 2023

Important Ruby ReDoS Vulns Discovered & Fixed

May 25, 2023

News

Advisories

HOWTOs

Features

Linux Container Security Primer

Email Phishing Using Kali Linux

Is Linux A More Secure Option Than Windows For Businesses?

How Secure Is Linux?

How To Secure Against WordPress Vulnerabilities with Predictive Analysis Detection & Automated Remediation

About Us

Powered By

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.

Learn More About Our Cookie Policy