dnsmasq 2.75-1ubuntu0.16.04.7 source package in Ubuntu


dnsmasq (2.75-1ubuntu0.16.04.7) xenial-security; urgency=medium

  * SECURITY UPDATE: Multiple security issues
    - CVE-2020-25681: heap overflow in RRSets sorting
    - CVE-2020-25682: buffer overflow in extracting names from DNS packets
    - CVE-2020-25683: heap overflow in DNSSEC validation
    - CVE-2020-25684: cache poisoning issue via address/port
    - CVE-2020-25685: cache poisoning issue via weak hash
    - CVE-2020-25686: birthday attack via incorrect existing requests check
    - CVE-2020-25687: heap overflow in DNSSEC validation
    - CVE-2019-14834: memory leak via DHCP response creation

 -- Marc Deslauriers <email address hidden>  Fri, 08 Jan 2021 12:34:33 -0500

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Original maintainer:
Ubuntu Developers
any all
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section


File Size SHA-256 Checksum
dnsmasq_2.75.orig.tar.gz 668.9 KiB eb4e390ca9252ad640a3c88686e6f86f672fc169e7f89c1dddb5f78146774cc2
dnsmasq_2.75-1ubuntu0.16.04.7.diff.gz 37.6 KiB 0f4b3dca8d585531daa49a8d2511f5b3278507a6696707432783544d29e159e1
dnsmasq_2.75-1ubuntu0.16.04.7.dsc 2.0 KiB 3ba65493bb02d20d0168628b147c3fc22c710cbfa498f82c550a3854473a984d

View changes file

Binary packages built by this source

dnsmasq: Small caching DNS proxy and DHCP/TFTP server

 Dnsmasq is a lightweight, easy to configure, DNS forwarder and DHCP
 server. It is designed to provide DNS and optionally, DHCP, to a
 small network. It can serve the names of local machines which are
 not in the global DNS. The DHCP server integrates with the DNS
 server and allows machines with DHCP-allocated addresses
 to appear in the DNS with names configured either in each host or
 in a central configuration file. Dnsmasq supports static and dynamic
 DHCP leases and BOOTP/TFTP for network booting of diskless machines.

dnsmasq-base: Small caching DNS proxy and DHCP/TFTP server

 This package contains the dnsmasq executable and documentation, but
 not the infrastructure required to run it as a system daemon. For
 that, install the dnsmasq package.

dnsmasq-utils: Utilities for manipulating DHCP leases

 Small utilities to query a DHCP server's lease database and
 remove leases from it. These programs are distributed with dnsmasq
 and may not work correctly with other DHCP servers.