Overview

File _patchinfo of Package patchinfo.23728

<patchinfo incident="23728">
  <issue tracker="bnc" id="1197872">VUL-0: CVE-2022-0934: dnsmasq: Heap use after free in dhcp6_no_relay</issue>
  <issue tracker="bnc" id="1183709">VUL-1: CVE-2021-3448: dnsmasq: fixed outgoing port used when --server is used with an interface name</issue>
  <issue tracker="cve" id="2022-0934"/>
  <issue tracker="cve" id="2021-3448"/>
  <packager>rmax</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for dnsmasq</summary>
  <description>This update for dnsmasq fixes the following issues:

- CVE-2021-3448: Fixed a potential DNS cache poisoning issue due to a constant
  outgoing port being used when for certain use cases of the --server option
  (bsc#1183709).
- CVE-2022-0934: Fixed an invalid memory access that could lead to remote denial
  of service via crafted packet (bsc#1197872).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places