dnsmasq-2.79-24.el8

エラータID: AXSA:2022-4199:03

Release date: 
Monday, November 28, 2022 - 12:55
Subject: 
dnsmasq-2.79-24.el8
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.

Security Fix(es):

* dnsmasq: Heap use after free in dhcp6_no_relay (CVE-2022-0934)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Asianux Server 8.7 Release Notes linked from the References section.

CVE-2022-0934
A single-byte, non-arbitrary write/use-after-free flaw was found in dnsmasq. This flaw allows an attacker who sends a crafted packet processed by dnsmasq, potentially causing a denial of service.

Solution: 

Update packages.

CVEs: 
CVE-2022-0934
A single-byte, non-arbitrary write/use-after-free flaw was found in dnsmasq. This flaw allows an attacker who sends a crafted packet processed by dnsmasq, potentially causing a denial of service.
Additional Info: 

N/A

Download: 

SRPMS
  1. dnsmasq-2.79-24.el8.src.rpm
    MD5: 80f77d32b110b58b01c927efab3ba9fa
    SHA-256: c7c62db1c3609daffaf582d13311389949e8cf774d371524a72bccd71ec81423
    Size: 597.43 kB

Asianux Server 8 for x86_64
  1. dnsmasq-2.79-24.el8.x86_64.rpm
    MD5: 3b3f8eff828f247dad43d6b46902acff
    SHA-256: b90a6827ef55267fc5b7d5effde5462b1ea16a951dbd1ea4bec8a7359559ef03
    Size: 319.59 kB
  2. dnsmasq-utils-2.79-24.el8.x86_64.rpm
    MD5: cdb5b18c537c61aa68bc7639eb7fec17
    SHA-256: 86eef318860b9de6b7f6ceec9a3e4b0e7788ed5a18d50d754ee3d64abcb59416
    Size: 54.99 kB