SUSE-SU-2023:2123-1

Details

This update for dnsmasq fixes the following issues:

CVE-2023-28450: Fixed default maximum size for EDNS.0 UDP packets (bsc#1209358).

Affected Packages

dnsmasq

SUSE HPE Helion OpenStack 8SUSE Linux Enterprise Server 12 SP5SUSE Linux Enterprise Server for SAP Applications 12 SP5SUSE OpenStack Cloud 8SUSE OpenStack Cloud 9

Fixed in:

2.78-18.21.1

dnsmasq-utils

SUSE HPE Helion OpenStack 8SUSE OpenStack Cloud 8SUSE OpenStack Cloud 9SUSE OpenStack Cloud Crowbar 8SUSE OpenStack Cloud Crowbar 9

Fixed in:

2.78-18.21.1

References

REPORT

https://bugzilla.suse.com/1209358

WEB

https://www.suse.com/security/cve/CVE-2023-28450

ADVISORY

https://www.suse.com/support/update/announcement/2023/suse-su-20232123-1/