FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

dnsmasq -- remotely exploitable buffer overflow in release candidate

Affected packages
2.73rc6 <= dnsmasq-devel < 2.73rc8

Details

VuXML ID 7927165a-0126-11e5-9d98-080027ef73ec
Discovery 2015-05-15
Entry 2015-05-23

Simon Kelley reports:

Anyone running 2.[73]rc6 or 2.[73]rc7 should be aware that there's a remotely exploitable buffer overflow in those trees. I just tagged 2.[73]rc8, which includes the fix.

(Corrections from second URL.)

References

URL http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2015q2/009529.html
URL http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2015q2/009535.html