[ALSA-2024:1334] Important: dnsmasq security update
Type:
security
Severity:
important
Release date:
2024-03-18
Description:
The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server. Security Fix(es): * dnsmasq: bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387) * dnsmasq: bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 dnsmasq-2.85-14.el9_3.1.aarch64.rpm 0862cf8fec3c91d15c1c47c687d0b2f5e037b6ea3aeb22a0ce2e66043e5bc3e9
aarch64 dnsmasq-utils-2.85-14.el9_3.1.aarch64.rpm 4ecb45b87a022113d81ff53eb001224891c66226493497369551ae952d8a21ed
ppc64le dnsmasq-2.85-14.el9_3.1.ppc64le.rpm 64878728ed6fefc3e09c9672f938873c8591ec0fdebb5fabca1910b34f24326d
ppc64le dnsmasq-utils-2.85-14.el9_3.1.ppc64le.rpm 9a0a391c7ed871312657869f7e660c4f81c2f766ef6786be1d1e43a0f991d167
s390x dnsmasq-2.85-14.el9_3.1.s390x.rpm 6fc7b10fd4a860e1e8ac105a92d101395aeae1fa79b3cc0a34b0abc8a6de841d
s390x dnsmasq-utils-2.85-14.el9_3.1.s390x.rpm f7aa7988a6fe29d9ac9a5c2ee91e955ce3bee69dfc2853faa1eb5673b951dbf6
x86_64 dnsmasq-2.85-14.el9_3.1.x86_64.rpm 1be42e2272eb00162c9261745ef97fa20694529c17694643034b46463dcbf66f
x86_64 dnsmasq-utils-2.85-14.el9_3.1.x86_64.rpm d3efd95eae85ed1dca1717ba87951449324c7f4ef2382c2cfbc007f863263314
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.