CVE-2023-28450: An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020. "Set the default maximum DNS UDP packet size to 1232. http://www.dnsflagday.net/2020/ refers. Thanks to Xiang Li for the prompt." Please bump to 2.90.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=7bad5fd969474919531a146d1ebfdbce318f6125 commit 7bad5fd969474919531a146d1ebfdbce318f6125 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2024-12-07 11:27:15 +0000 Commit: Hans de Graaff <graaff@gentoo.org> CommitDate: 2024-12-07 11:27:23 +0000 [ GLSA 202412-10 ] Dnsmasq: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/867322 Bug: https://bugs.gentoo.org/905321 Bug: https://bugs.gentoo.org/924448 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: Hans de Graaff <graaff@gentoo.org> glsa-202412-10.xml | 47 +++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 47 insertions(+)
