dnsmasq: fix CVE-2026-2291 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Abhishek Bachiphale <Abhishek.Bachiphale@windriver.com>	2026-05-18 22:43:31 +0530
committer	Khem Raj <khem.raj@oss.qualcomm.com>	2026-05-20 21:18:30 -0700
commit	a53328688a239e97b8383ffbfd7b4b4eca108d73 (patch)
tree	bb83d7aeea464971800c4d73cd923f14d971a5c3 /meta-python/recipes-devtools/python/python3-eth-utils_6.0.0.bb
parent	47e9739586748a60428a116c0dcd761a2f648588 (diff)
download	meta-openembedded-a53328688a239e97b8383ffbfd7b4b4eca108d73.tar.gz

dnsmasq: fix CVE-2026-2291

dnsmasqs extract_name() function can be abused to cause a heap buffer overflow, allowing an attacker to inject false DNS cache entries, which could result in DNS lookups to redirect to an attacker-controlled IP address, or to cause a DoS. Reference: [ https://nvd.nist.gov/vuln/detail/CVE-2026-2291 ] Signed-off-by: Abhishek Bachiphale <Abhishek.Bachiphale@windriver.com> Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-eth-utils_6.0.0.bb')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: