SUSE-SU-2019:14190-1

Опубликовано: 08 окт. 2019

Источник: suse-cvrf

Описание

Security update for dnsmasq

This update for dnsmasq fixes the following issues:

Security issue fixed:

CVE-2017-15107: Fixed a vulnerability in DNSSEC implementation. Processing of wildcard synthesized NSEC records may result improper validation for non-existance. (bsc#1076958)

Non-security issue fixed:

Removed cache size limit. (bsc#1138743)

Список пакетов

SUSE Linux Enterprise Server 11 SP4-LTSS

dnsmasq-2.78-0.17.10.1

Ссылки

https://www.suse.com/support/update/announcement/2019/suse-su-201914190-1/
Link for SUSE-SU-2019:14190-1
https://lists.suse.com/pipermail/sle-security-updates/2019-October/005998.html
E-Mail link for SUSE-SU-2019:14190-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1076958
SUSE Bug 1076958
https://bugzilla.suse.com/1138743
SUSE Bug 1138743
https://www.suse.com/security/cve/CVE-2017-15107/
SUSE CVE CVE-2017-15107 page

Описание

A vulnerability was found in the implementation of DNSSEC in Dnsmasq up to and including 2.78. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames that actually exist.

Затронутые продукты

SUSE Linux Enterprise Server 11 SP4-LTSS:dnsmasq-2.78-0.17.10.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-15107.html
CVE-2017-15107
https://bugzilla.suse.com/1076958
SUSE Bug 1076958

SUSE-SU-2019:14190-1

Описание

Список пакетов

SUSE Linux Enterprise Server 11 SP4-LTSS

Ссылки

Уязвимость: CVE-2017-15107

Описание

Затронутые продукты

Ссылки