pkg:Alpine/dnsmasq

All known vulnerabilities

• CRITICAL9.8CVE-2017-14491dnsmasq - security update
  from 0, < 2.78-r0
• CRITICAL9.8CVE-2017-14493Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code v…
  from 0, < 2.78-r0
• CRITICAL9.8CVE-2017-14492Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code vi…
  from 0, < 2.78-r0
• HIGH8.4CVE-2026-4892A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code wit…
  from 0, < 2.91-r1
• HIGH8.1CVE-2020-25682A flaw was found in dnsmasq before 2.83.
  from 0, < 2.83-r0
• HIGH8.1CVE-2020-25681dnsmasq - security update
  from 0, < 2.83-r0
• HIGH7.5CVE-2026-4890A Denial of Service (DoS) vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via a craf…
  from 0, < 2.91-r1
• HIGH7.5CVE-2023-50868The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a de…
  from 0, < 2.90-r0
• HIGH7.5CVE-2023-50387pdns-recursor - security update
  from 0, < 2.90-r0
• HIGH7.5CVE-2023-28450An issue was discovered in Dnsmasq before 2.90.
  from 0, < 2.86-r3
• HIGH7.5CVE-2022-0934dnsmasq - security update
  from 0, < 2.86-r1
• HIGH7.5CVE-2017-15107A vulnerability was found in the implementation of DNSSEC in Dnsmasq up to and including 2.78.
  from 0, < 2.79-r0
• HIGH7.5CVE-2017-14496Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, --add-cpe-id or --add-subnet option is spec…
  from 0, < 2.78-r0
• HIGH7.5CVE-2017-14495Memory leak in dnsmasq before 2.78, when the --add-mac, --add-cpe-id or --add-subnet option is specified, allows remote attackers to cause…
  from 0, < 2.78-r0
• HIGH7.5CVE-2017-13704In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value.
  from 0, < 2.78-r0
• HIGH7.3CVE-2026-5172A buffer overflow in dnsmasq’s extract_addresses() function allows an attacker to trigger a heap out-of-bounds read and crash by exploiting…
  from 0, < 2.91-r1
• HIGH7.3CVE-2026-2291dnsmasqs extract_name() function can be abused to cause a heap buffer overflow, allowing an attacker to inject false DNS cache entries, whi…
  from 0, < 2.91-r1
• MEDIUM5.9CVE-2020-25687A flaw was found in dnsmasq before version 2.83.
  from 0, < 2.83-r0
• MEDIUM5.9CVE-2020-25683A flaw was found in dnsmasq before version 2.83.
  from 0, < 2.83-r0
• MEDIUM5.9CVE-2017-14494dnsmasq before 2.78, when configured as a relay, allows remote attackers to obtain sensitive memory information via vectors involving handl…
  from 0, < 2.78-r0
• MEDIUM5.3CVE-2026-4893An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 c…
  from 0, < 2.91-r1
• MEDIUM5.3CVE-2026-4891A heap-based out-of-bounds read vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via…
  from 0, < 2.91-r1
• MEDIUM4.0CVE-2021-3448A flaw was found in dnsmasq in versions before 2.85.
  from 0, < 2.85-r0
• LOW3.7CVE-2020-25686A flaw was found in dnsmasq before version 2.83.
  from 0, < 2.83-r0
• LOW3.7CVE-2020-25685A flaw was found in dnsmasq before version 2.83.
  from 0, < 2.83-r0
• LOW3.7CVE-2020-25684A flaw was found in dnsmasq before version 2.83.
  from 0, < 2.83-r0
• LOW3.7CVE-2019-14834A vulnerability was found in dnsmasq before version 2.81, where the memory leak allows remote attackers to cause a denial of service (memor…
  from 0, < 2.80-r4