Petr Mensik discovered that Dnsmasq incorrectly randomized source ports in certain configurations. A remote attacker could possibly use this issue to facilitate DNS cache poisoning attacks.
{ "availability": "No subscription required", "binaries": [ { "binary_name": "dnsmasq", "binary_version": "2.79-1ubuntu0.4" }, { "binary_name": "dnsmasq-base", "binary_version": "2.79-1ubuntu0.4" }, { "binary_name": "dnsmasq-base-lua", "binary_version": "2.79-1ubuntu0.4" }, { "binary_name": "dnsmasq-utils", "binary_version": "2.79-1ubuntu0.4" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "dnsmasq", "binary_version": "2.80-1.1ubuntu1.4" }, { "binary_name": "dnsmasq-base", "binary_version": "2.80-1.1ubuntu1.4" }, { "binary_name": "dnsmasq-base-lua", "binary_version": "2.80-1.1ubuntu1.4" }, { "binary_name": "dnsmasq-utils", "binary_version": "2.80-1.1ubuntu1.4" } ] }