drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in Dnsmasq
Name: |
Denial of Service in Dnsmasq |
|
ID: |
USN-3009-1 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu 15.10, Ubuntu 16.04 LTS |
|
Datum: |
Mo, 20. Juni 2016, 21:19 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8899 |
|
Applikationen: |
Dnsmasq |
|
Originalnachricht |
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --===============7191610727481594320== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="TeNuj2GmpB6hH4NEV7AGrEcgIU2jB3Lg0"
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --TeNuj2GmpB6hH4NEV7AGrEcgIU2jB3Lg0 Content-Type: multipart/mixed; boundary="NJt8oTNmcDPbpqShUDkas2xjvAGjjBJ5N" From: Marc Deslauriers <marc.deslauriers@canonical.com> Reply-To: Ubuntu Security <security@ubuntu.com> To: ubuntu-security-announce@lists.ubuntu.com Message-ID: <576831E4.1060205@canonical.com> Subject: [USN-3009-1] Dnsmasq vulnerability
--NJt8oTNmcDPbpqShUDkas2xjvAGjjBJ5N Content-Type: text/plain; charset=utf- Content-Transfer-Encoding: quoted-printable
========================================================================== Ubuntu Security Notice USN-3009-1 June 20, 2016
dnsmasq vulnerability ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 16.04 LTS - Ubuntu 15.10
Summary:
Dnsmasq could be made to crash if it received specially crafted network traffic.
Software Description: - dnsmasq: Small caching DNS proxy and DHCP/TFTP server
Details:
Edwin Török discovered that Dnsmasq incorrectly handled certain CNAME responses. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service.
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 16.04 LTS: dnsmasq 2.75-1ubuntu0.16.04.1 dnsmasq-base 2.75-1ubuntu0.16.04.1 dnsmasq-utils 2.75-1ubuntu0.16.04.1
Ubuntu 15.10: dnsmasq 2.75-1ubuntu0.15.10.1 dnsmasq-base 2.75-1ubuntu0.15.10.1 dnsmasq-utils 2.75-1ubuntu0.15.10.1
After a standard system update you need to reboot your computer to make all the necessary changes.
References: http://www.ubuntu.com/usn/usn-3009-1 CVE-2015-8899
Package Information: https://launchpad.net/ubuntu/+source/dnsmasq/2.75-1ubuntu0.16.04.1 https://launchpad.net/ubuntu/+source/dnsmasq/2.75-1ubuntu0.15.10.1
--NJt8oTNmcDPbpqShUDkas2xjvAGjjBJ5N--
--TeNuj2GmpB6hH4NEV7AGrEcgIU2jB3Lg0 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE----- Version: GnuPG v2
iQIcBAEBCgAGBQJXaDHpAAoJEGVp2FWnRL6T13YP/jc48kggPhYguLkedGxEMvrL lOZuj1oyzEJalsMePwjTmfVSg4UNayZsY0NPokhX8lTVxgU3aNxkxuILM2Nt32Av j+vLFLLjzCLaFIsOH+aTB/19KxQbWmNp/sIS4CHzNVAPnqNK171wUvOL1sknJD/0 yH7te/QNBmZxF9xjJgLifC7WfI2lTdwmSWrnWoMgL5vAHWFEhBdAKB0efNYfqyk2 UurwUn6IGDy2dYk4ZfY0Ahs9E/G5jW9Ryuugcag0LLUUD1sXa1V3T2Lhtg9sgHXb O7wFq63Jps/vp/OXj5oGNCVTLubPgdBFpp0RVybg1k6Ym06OY1pqq8+F+5RlDrHG j8xT9Wr0+rG8xgtVvXK0vyrVDvVth60yIj+K7cBQ3bqqtnFW/nRSFa5G+V0aqksh VzJpchSQ4OLpyr2y/oY6ThaJPlp1cKNoBZkpgIzIg9DKYqkwot9KGlffsij0f0Ve brZWaKy8Fw4WV+cWMneRUI7+5u86120I6h2g3PjdTJ62dc62T74cydOrTuYU+tqf 33WgFIID1USLaRyPCmFoOEx2z8+sZx038AS9MrLVTp9+4ZSF5yuGsJfYmJu/M4Pq N8YbmXBHWe5r2uZC/QFCsNpUWmh65z1dN/sN+UJQ2J2K9bQyfTCUSEbAT4ejl5ka h72wSZX7L/HxMtbw0TFW =JxVv -----END PGP SIGNATURE-----
--TeNuj2GmpB6hH4NEV7AGrEcgIU2jB3Lg0--
--===============7191610727481594320== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline
-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
--===============7191610727481594320==--
|
|
|
|