ELSA-2024-1335

ELSA-2024-1335 - dnsmasq security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2024-03-15

Description


[2.79-31.2]
- Fix CVE 2023-50387 and CVE 2023-50868
- Resolves: RHEL-25628
- Resolves: RHEL-25666

[2.79-31.1]
- Do not crash on invalid domain in --synth-domain option (RHEL-22741)

[2.79-31]
- Do not create and search --local and --address=/x/# domains (#2233542)

[2.79-30]
- Make create logfile writeable by root (#2156789)

[2.79-29]
- Fix also dynamically set resolvers over dbus (#2186481)

[2.79-28]
- Correct possible crashes when server=/example.net/# is used (#2186481)

[2.79-27]
- Limit offered EDNS0 size to 1232 (CVE-2023-28450)


Related CVEs


CVE-2023-50387
CVE-2023-50868

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) dnsmasq-2.79-31.el8_9.2.src.rpm655778c0cdcd6ae0e14dba81a7e3cbf549e8e1b1c3a3c49f1e1e56cb9dd66cd5-ol8_aarch64_appstream
dnsmasq-2.79-31.el8_9.2.aarch64.rpmd224c6e56ac6040e88c9818fcb3c1b870b7276da84b82efab21aa7103b47c231-ol8_aarch64_appstream
dnsmasq-utils-2.79-31.el8_9.2.aarch64.rpmae8334fcaae5d0f8e176248f101fbd49e5eb6eae0ece8e3b4fc60379dcc3c2a3-ol8_aarch64_appstream
Oracle Linux 8 (x86_64) dnsmasq-2.79-31.el8_9.2.src.rpm655778c0cdcd6ae0e14dba81a7e3cbf549e8e1b1c3a3c49f1e1e56cb9dd66cd5-ol8_x86_64_appstream
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-exadata_dbserver_23.1.13.0.0_x86_64_base
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-exadata_dbserver_23.1.14.0.0_x86_64_base
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-exadata_dbserver_23.1.15.0.0_x86_64_base
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-exadata_dbserver_24.1.0.0.0_x86_64_base
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-exadata_dbserver_24.1.1.0.0_x86_64_base
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-exadata_dbserver_24.1.10.0.0_x86_64_base
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-exadata_dbserver_24.1.3.0.0_x86_64_base
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-exadata_dbserver_24.1.4.0.0_x86_64_base
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-exadata_dbserver_24.1.5.0.0_x86_64_base
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-exadata_dbserver_24.1.6.0.0_x86_64_base
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-exadata_dbserver_24.1.9.0.0_x86_64_base
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-exadata_dbserver_25.1.0.0.0_x86_64_base
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-exadata_dbserver_25.1.1.0.0_x86_64_base
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-exadata_dbserver_25.1.2.0.0_x86_64_base
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-exadata_dbserver_25.1.3.0.0_x86_64_base
dnsmasq-2.79-31.el8_9.2.x86_64.rpm04ba2f6f8fc125f694577601a95e126ec172bf38d743359c82a2e3a098c95cb2-ol8_x86_64_appstream
dnsmasq-utils-2.79-31.el8_9.2.x86_64.rpm7f60c217e346a84edd49b5bfcb7799bb3db063aaf9522907ba5de79d77a42803-ol8_x86_64_appstream



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete