FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

dnsmasq -- denial of service

Affected packages
dnsmasq < 2.76,1
dnsmasq-devel < 2.76.0test1

Details

VuXML ID 875e4cf8-3f0e-11e6-b3c8-14dae9d210b8
Discovery 2016-04-18
Entry 2016-06-30
Modified 2016-06-30

reports:

Dnsmasq before 2.76 allows remote servers to cause a denial of service (crash) via a reply with an empty DNS address that has an (1) A or (2) AAAA record defined locally.

References

CVE Name CVE-2015-8899
URL http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2016q2/010479.html
URL http://www.openwall.com/lists/oss-security/2016/06/03/7