SUSE-SU-2025:0071-1

Details

This update for dnsmasq fixes the following issues:

Version update to 2.90:
CVE-2023-50387: Fixed a Denial Of Service while trying to validate specially crafted DNSSEC responses. (bsc#1219823)
CVE-2023-50868: Fixed a Denial Of Service while trying to validate specially crafted DNSSEC responses. (bsc#1219826)
CVE-2023-28450: Default maximum EDNS.0 UDP packet size should be 1232. (bsc#1209358)

Affected Packages

dnsmasq

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise High Performance Computing 15 SP5-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP5-LTSSSUSE Linux Enterprise Micro 5.3

Fixed in:

2.90-150400.16.3.1

dnsmasq-utils

openSUSE Leap 15.6

Fixed in:

2.90-150400.16.3.1

References

REPORT

https://bugzilla.suse.com/1200344

REPORT

https://bugzilla.suse.com/1207174

REPORT