[ubuntu-cloud-archive/queens-proposed] dnsmasq (Accepted)
Corey Bryant
corey.bryant at canonical.com
Thu Jan 21 22:16:02 UTC 2021
dnsmasq (2.79-1ubuntu0.2~cloud0) xenial-queens; urgency=medium
.
* New update for the Ubuntu Cloud Archive.
.
dnsmasq (2.79-1ubuntu0.2) bionic-security; urgency=medium
.
* SECURITY UPDATE: Multiple security issues
- CVE-2020-25681: heap overflow in RRSets sorting
- CVE-2020-25682: buffer overflow in extracting names from DNS packets
- CVE-2020-25683: heap overflow in DNSSEC validation
- CVE-2020-25684: cache poisoning issue via address/port
- CVE-2020-25685: cache poisoning issue via weak hash
- CVE-2020-25686: birthday attack via incorrect existing requests check
- CVE-2020-25687: heap overflow in DNSSEC validation
- CVE-2019-14834: memory leak via DHCP response creation
Date: Wed, 20 Jan 2021 14:04:44 +0000
Changed-By: Openstack Ubuntu Testing Bot <openstack-testing-bot at ubuntu.com>
Signed-By: Openstack Ubuntu Testing Bot
Published-By: Corey Bryant <corey.bryant at canonical.com>
More information about the Cloud-archive-changes
mailing list