Security update for dnsmasq
This update for dnsmasq fixes the following issues:
Security issues fixed:
- CVE-2019-14834: Fixed a memory leak which could have allowed to remote attackers
to cause denial of service via DHCP response creation (bsc#1154849)
- CVE-2017-15107: Fixed a vulnerability in DNSSEC implementation. Processing of
wildcard synthesized NSEC records may result improper validation for non-existance
(bsc#1076958).
Other issues addressed:
- Included linux/sockios.h to get SIOCGSTAMP (bsc#1156543).
- Removed cache size limit (bsc#1138743).
- bsc#1152539: include config files from /etc/dnsmasq.d/*.conf .
This update was imported from the SUSE:SLE-15-SP1:Update update project.
-
Submitted by
Reinhard Max (rmax)
Fixed bugs
bnc#1152539
dnsmasq default configuration doesn't enable by default /etc/dnsmasq.d/*.conf
bnc#1138743
increase dnsmasq cache size
bnc#1156543
dnsmasq build failed with linux-glibc-devel 5.3
bnc#1154849
VUL-1: CVE-2019-14834: dnsmasq: dnsmasq: memory leak in the create_helper() function in /src/helper.c
bnc#1076958
VUL-1: CVE-2017-15107: dnsmasq: dnsmasq: Improper validation of wildcard synthesized NSEC records
