Dnsmasq: Multiple vulnerabilities Multiple vulnerabilities have been found in Dnsmasq, the worst of which may allow remote attackers to execute arbitrary code. dnsmasq 2017-10-23 2017-10-23 632692 remote 2.78 2.78

Dnsmasq is a lightweight and easily-configurable DNS forwarder and DHCP server.

Multiple vulnerabilities have been discovered in Dnsmasq. Please review the references below for details.

A remote attacker could execute arbitrary code or cause a Denial of Service condition via crafted DNS, IPv6, or DHCPv6 packets.

There is no known workaround at this time.

All Dnsmasq users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=net-dns/dnsmasq-2.78" CVE-2017-14491 CVE-2017-14492 CVE-2017-14493 CVE-2017-14494 CVE-2017-14495 CVE-2017-14496 b-man chrisadr