<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/meta-openembedded.git/meta-networking/recipes-support/dnsmasq, branch master</title>
<subtitle>Mirror of git.openembedded.org/meta-openembedded</subtitle>
<id>https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=master</id>
<link rel='self' href='https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=master'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/'/>
<updated>2026-06-08T01:21:50+00:00</updated>
<entry>
<title>dnsmasq: upgrade 2.92 -&gt; 2.93</title>
<updated>2026-06-08T01:21:50+00:00</updated>
<author>
<name>Abhishek Bachiphale</name>
<email>Abhishek.Bachiphale@windriver.com</email>
</author>
<published>2026-06-04T20:52:57+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=44ec3710d58879a7e9e5f2de97cd81c3211b522c'/>
<id>urn:sha1:44ec3710d58879a7e9e5f2de97cd81c3211b522c</id>
<content type='text'>
ChangeLog:
https://dnsmasq.org/CHANGELOG

- Update checksum
- Remove obsolete patches
- Verified build and runtime functionality

Security fixes (included upstream in 2.93) :
- CVE-2026-2291
- CVE-2026-4890
- CVE-2026-4891
- CVE-2026-4892
- CVE-2026-4893
- CVE-2026-5172

- Removed patches corresponding to the above CVEs
  as fixes are now part of upstream release

Signed-off-by: Abhishek Bachiphale &lt;Abhishek.Bachiphale@windriver.com&gt;
Signed-off-by: Khem Raj &lt;khem.raj@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>dnsmasq: fix CVE-2026-5172</title>
<updated>2026-05-21T04:18:31+00:00</updated>
<author>
<name>Abhishek Bachiphale</name>
<email>Abhishek.Bachiphale@windriver.com</email>
</author>
<published>2026-05-18T17:13:36+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=44c8962f48a67fbe0fbc8fd830d2f51ae15541a4'/>
<id>urn:sha1:44c8962f48a67fbe0fbc8fd830d2f51ae15541a4</id>
<content type='text'>
A buffer overflow in dnsmasq’s extract_addresses() function allows
an attacker to trigger a heap out-of-bounds read and crash by
exploiting a malformed DNS response, enabling extract_name()
to advance the pointer past the record’s end.

Reference:
[ https://nvd.nist.gov/vuln/detail/CVE-2026-5172 ]

Signed-off-by: Abhishek Bachiphale &lt;Abhishek.Bachiphale@windriver.com&gt;
Signed-off-by: Khem Raj &lt;khem.raj@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>dnsmasq: fix CVE-2026-4893</title>
<updated>2026-05-21T04:18:31+00:00</updated>
<author>
<name>Abhishek Bachiphale</name>
<email>Abhishek.Bachiphale@windriver.com</email>
</author>
<published>2026-05-18T17:13:35+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=b4c48536242d9aa7d1eaf968152fc83edea41923'/>
<id>urn:sha1:b4c48536242d9aa7d1eaf968152fc83edea41923</id>
<content type='text'>
An information disclosure vulnerability in dnsmasq allows remote
attackers to bypass source checks via a crafted DNS packet with
RFC 7871 client subnet information.

Reference:
[ https://nvd.nist.gov/vuln/detail/CVE-2026-4893 ]

Signed-off-by: Abhishek Bachiphale &lt;Abhishek.Bachiphale@windriver.com&gt;
Signed-off-by: Khem Raj &lt;khem.raj@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>dnsmasq: fix CVE-2026-4892</title>
<updated>2026-05-21T04:18:31+00:00</updated>
<author>
<name>Abhishek Bachiphale</name>
<email>Abhishek.Bachiphale@windriver.com</email>
</author>
<published>2026-05-18T17:13:34+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=21c3d7eb6f94f967b5e02fc61cc027d3893764a0'/>
<id>urn:sha1:21c3d7eb6f94f967b5e02fc61cc027d3893764a0</id>
<content type='text'>
A heap-based out-of-bounds write vulnerability in the DHCPv6
implementation of dnsmasq allows local attackers to execute
arbitrary code with root privileges via a crafted DHCPv6 packet.

Reference:
[ https://nvd.nist.gov/vuln/detail/CVE-2026-4892 ]

Signed-off-by: Abhishek Bachiphale &lt;Abhishek.Bachiphale@windriver.com&gt;
Signed-off-by: Khem Raj &lt;khem.raj@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>dnsmasq: fix CVE-2026-4891</title>
<updated>2026-05-21T04:18:31+00:00</updated>
<author>
<name>Abhishek Bachiphale</name>
<email>Abhishek.Bachiphale@windriver.com</email>
</author>
<published>2026-05-18T17:13:33+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=a9de48a9fa55a254c0bf2eb528c81bd90e015c03'/>
<id>urn:sha1:a9de48a9fa55a254c0bf2eb528c81bd90e015c03</id>
<content type='text'>
A heap-based out-of-bounds read vulnerability in the
DNSSEC validation of dnsmasq allows remote attackers
to cause a denial of service via a crafted DNS packet.

Reference:
[ https://nvd.nist.gov/vuln/detail/CVE-2026-4891 ]

Signed-off-by: Abhishek Bachiphale &lt;Abhishek.Bachiphale@windriver.com&gt;
Signed-off-by: Khem Raj &lt;khem.raj@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>dnsmasq: fix CVE-2026-4890</title>
<updated>2026-05-21T04:18:30+00:00</updated>
<author>
<name>Abhishek Bachiphale</name>
<email>Abhishek.Bachiphale@windriver.com</email>
</author>
<published>2026-05-18T17:13:32+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=78162615f538ddfde6886f1dc2a8c7d3d944c79e'/>
<id>urn:sha1:78162615f538ddfde6886f1dc2a8c7d3d944c79e</id>
<content type='text'>
A Denial of Service (DoS) vulnerability in the DNSSEC
validation of dnsmasq allows remote attackers to cause
a denial of service via a crafted DNS packet.

Reference:
[ https://nvd.nist.gov/vuln/detail/CVE-2026-4890 ]

Signed-off-by: Abhishek Bachiphale &lt;Abhishek.Bachiphale@windriver.com&gt;
Signed-off-by: Khem Raj &lt;khem.raj@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>dnsmasq: fix CVE-2026-2291</title>
<updated>2026-05-21T04:18:30+00:00</updated>
<author>
<name>Abhishek Bachiphale</name>
<email>Abhishek.Bachiphale@windriver.com</email>
</author>
<published>2026-05-18T17:13:31+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=a53328688a239e97b8383ffbfd7b4b4eca108d73'/>
<id>urn:sha1:a53328688a239e97b8383ffbfd7b4b4eca108d73</id>
<content type='text'>
dnsmasqs extract_name() function can be abused to cause a heap buffer
overflow, allowing an attacker to inject false DNS cache entries,
which could result in DNS lookups to redirect to an attacker-controlled
IP address, or to cause a DoS.

Reference:
[ https://nvd.nist.gov/vuln/detail/CVE-2026-2291 ]

Signed-off-by: Abhishek Bachiphale &lt;Abhishek.Bachiphale@windriver.com&gt;
Signed-off-by: Khem Raj &lt;khem.raj@oss.qualcomm.com&gt;
</content>
</entry>
<entry>
<title>dnsmasq: upgrade 2.91 -&gt; 2.92</title>
<updated>2026-01-23T06:01:04+00:00</updated>
<author>
<name>Wang Mingyu</name>
<email>wangmy@fujitsu.com</email>
</author>
<published>2026-01-21T11:29:15+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=11838942fd07590927c9ff42ed0cdbd691c97f0b'/>
<id>urn:sha1:11838942fd07590927c9ff42ed0cdbd691c97f0b</id>
<content type='text'>
Signed-off-by: Wang Mingyu &lt;wangmy@fujitsu.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
<entry>
<title>dnsmasq: upgrade 2.90 -&gt; 2.91</title>
<updated>2025-03-24T14:29:13+00:00</updated>
<author>
<name>Yi Zhao</name>
<email>yi.zhao@windriver.com</email>
</author>
<published>2025-03-23T05:16:02+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=e5271adea7d1ff30320601d7449f5e778848678e'/>
<id>urn:sha1:e5271adea7d1ff30320601d7449f5e778848678e</id>
<content type='text'>
ChangeLog:
https://thekelleys.org.uk/dnsmasq/CHANGELOG

Signed-off-by: Yi Zhao &lt;yi.zhao@windriver.com&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
<entry>
<title>dnsmasq: set config dhcp6, broken-rtc by FEATURES</title>
<updated>2024-08-16T14:30:56+00:00</updated>
<author>
<name>Jörg Sommer</name>
<email>joerg.sommer@navimatix.de</email>
</author>
<published>2024-08-16T10:17:35+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/meta-openembedded.git/commit/?id=ec936d6893b95a6c191c324ff2448444ac56d6dc'/>
<id>urn:sha1:ec936d6893b95a6c191c324ff2448444ac56d6dc</id>
<content type='text'>
Some of the PACKAGECONFIG can be derived from the DISTRO_FEATURES and
MACHINE_FEATURES.

Signed-off-by: Jörg Sommer &lt;joerg.sommer@navimatix.de&gt;
Signed-off-by: Khem Raj &lt;raj.khem@gmail.com&gt;
</content>
</entry>
</feed>
