SUSE-SU-2021:14603-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:14603-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2021:14603-1
- Related
- Published
- 2021-01-19T11:11:40Z
- Modified
- 2021-01-19T11:11:40Z
- Summary
- Security update for dnsmasq
- Details
-
This update for dnsmasq fixes the following issues:
- CVE-2019-14834: Fixed a memory leak which could have allowed to remote attackers to cause denial of service via DHCP response creation (bsc#1154849)
- bsc#1177077: Fixed DNSpooq vulnerabilities
- CVE-2020-25684, CVE-2020-25685, CVE-2020-25686: Fixed multiple Cache poisoning attacks.
- CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25687: Fixed multiple potential Heap-based overflows when DNSSEC is enabled.
- Retry query to other servers on receipt of SERVFAIL rcode (bsc#1176076)
- References
-
- https://www.suse.com/support/update/announcement/2021/suse-su-202114603-1/
- https://bugzilla.suse.com/1154849
- https://bugzilla.suse.com/1176076
- https://bugzilla.suse.com/1177077
- https://www.suse.com/security/cve/CVE-2019-14834
- https://www.suse.com/security/cve/CVE-2020-25681
- https://www.suse.com/security/cve/CVE-2020-25682
- https://www.suse.com/security/cve/CVE-2020-25683
- https://www.suse.com/security/cve/CVE-2020-25684
- https://www.suse.com/security/cve/CVE-2020-25685
- https://www.suse.com/security/cve/CVE-2020-25686
- https://www.suse.com/security/cve/CVE-2020-25687