Overview

File _patchinfo of Package patchinfo.17855

<patchinfo incident="17855">
  <issue tracker="bnc" id="1176076">dnsmasq receiving SERVFAIL from upstream dns server stops resolving of query</issue>
  <issue tracker="bnc" id="1177077">VUL-0: EMBARGOED: CVE-2020-25681,CVE-2020-25682,CVE-2020-25683,CVE-2020-25684,CVE-2020-25685,CVE-2020-25686,CVE-2020-25687: dnsmasq: various issues (VINCE) aka "dnspooq"</issue>
  <issue tracker="cve" id="2020-25686"/>
  <issue tracker="cve" id="2020-25685"/>
  <issue tracker="cve" id="2020-25687"/>
  <issue tracker="cve" id="2020-25682"/>
  <issue tracker="cve" id="2020-25684"/>
  <issue tracker="cve" id="2020-25683"/>
  <issue tracker="cve" id="2020-25681"/>
  <packager>rmax</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for dnsmasq</summary>
  <description>This update for dnsmasq fixes the following issues:

- bsc#1177077: Fixed DNSpooq vulnerabilities
- CVE-2020-25684, CVE-2020-25685, CVE-2020-25686:
  Fixed multiple Cache Poisoning attacks.
- CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25687:
  Fixed multiple potential Heap-based overflows when DNSSEC is
  enabled.

- Retry query to other servers on receipt of SERVFAIL rcode
  (bsc#1176076)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places