UbuntuUpdates.org

Package "dnsmasq"

Name: dnsmasq

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Small caching DNS proxy and DHCP/TFTP server
  • Utilities for manipulating DHCP leases
Latest version: 2.90-0ubuntu0.23.10.1
Release: mantic (23.10)
Level: security
Repository: main

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "dnsmasq" in Mantic

Repository Area Version
base universe 2.89-1
base main 2.89-1
security universe 2.90-0ubuntu0.23.10.1
updates main 2.90-0ubuntu0.23.10.1
updates universe 2.90-0ubuntu0.23.10.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2.90-0ubuntu0.23.10.1 2024-02-26 15:07:15 UTC

  dnsmasq (2.90-0ubuntu0.23.10.1) mantic-security; urgency=medium

  * Updated to 2.90 to fix multiple security issues.
    - debian/rules: specify lua version with LUA.
    - CVE-2023-28450, CVE-2023-50387, CVE-2023-50868
  * Convert package to source format 3.0 to ease maintenance going forward.

 -- Marc Deslauriers <email address hidden> Wed, 14 Feb 2024 13:35:34 -0500
CVE-2023-28450 An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day
CVE-2023-50387 Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU
CVE-2023-50868 The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of se


About   -   Send Feedback to @ubuntu_updates