A set of six new vulnerabilities in dnsmasq, including heap buffer overflows and input validation flaws, can lead to DNS cache poisoning, denial of service, and local privilege escalation. The article does not provide specific CVSS scores, affected version ranges, fixed versions, or workarounds.
Recent disclosures have revealed that open-source networking tool dnsmasq is grappling with a serious set of vulnerabilities. The problems span memory safety and input validation, with researchers identifying heap buffer overflows, heap corruption, and code execution bugs among the issues. Taken together, the security flaws open the door to various attacks: poisoning cached DNS entries, slipping past security controls, crashing the dnsmasq process, and in certain scenarios, escalating privileges locally. To address all of this, … More → The post Six new dnsmasq vulnerabilities open the door to DNS cache poisoning, local root appeared first on Help Net Security .