Slackware Dnsmasq Update: Address Off-By-One Denial of Service Bug
slackware
July 20, 2005
New dnsmasq packages are available for Slackware 10.0, 10.1, and -current to fix security issues
Summary
Here are the details from the Slackware 10.1 ChangeLog: patches/packages/dnsmasq-2.22-i486-1.tgz: Upgraded to dnsmasq-2.22. This fixes an off-by-one overflow vulnerability may allow a DHCP client to create a denial of service condition. Additional code was also added to detect and defeat attempts to poison the DNS cache. For more information, see: https://www.cve.org/CVERecord?id=CAN-2005-0876 https://www.cve.org/CVERecord?id=CAN-2005-0877 (* Security fix *)
Topics Covered
Where Find New Packages
Updated package for Slackware 10.0:
Updated package for Slackware 10.1:
Updated package for Slackware -current:
MD5 Signatures
Slackware 10.0 package:
9716a39a464c0121b88a3a717a65b7a3 dnsmasq-2.22-i486-1.tgz
Slackware 10.1 package:
21f99c7ed9bbee044fb839f4a9214b8c dnsmasq-2.22-i486-1.tgz
Slackware -current package:
e37624bee39e7e5da2f8790973e89e07 dnsmasq-2.22-i486-1.tgz
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Installation Instructions
Installation instructions: Upgrade the package as root: # upgradepkg dnsmasq-2.22-i486-1.tgz
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!