Advisories » MGASA-2019-0392

Updated dnsmasq packages fix security vulnerability

Publication date: 15 Dec 2019
Modification date: 15 Dec 2019
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-14834

Description

A vulnerability was found in dnsmsq through version 2.90, where the
memory leak allows remote attackers to cause a denial of service
(memory consumption) via vectors involving DHCP response creation.
(CVE-2019-14834)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=25854
• http://lists.suse.com/pipermail/sle-security-updates/2019-December/006208.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14834

SRPMS

7/core

• dnsmasq-2.80-5.2.mga7