Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2021-0059)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2021.0059

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2021-0059)

Resumen: The remote host is missing an update for the 'dnsmasq' package(s) announced via the MGASA-2021-0059 advisory.

Descripción: Summary:
The remote host is missing an update for the 'dnsmasq' package(s) announced via the MGASA-2021-0059 advisory.

Vulnerability Insight:
Multiples vulnerabilities have been discovered in dnsmasq up to version 2.82:
- subtle errors in dnsmasq's protections against cache-poisoning attacks
(CVE-2020-25684, CVE-2020-25685 and CVE-2020-25686)
- buffer overflow in dnsmasq's DNSSEC code (CVE-2020-25681,
CVE-2020-25682, CVE-2020-25683 and CVE-2020-25687)

Affected Software/OS:
'dnsmasq' package(s) on Mageia 7.

Solution:
Please install the updated package(s).

CVSS Score:
8.3

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2020-25681
Debian Security Information: DSA-4844 (Google Search)
https://www.debian.org/security/2021/dsa-4844
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QGB7HL3OWHTLEPSMLDGOMXQKG3KM2QME/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WYW3IR6APUSKOYKL5FT3ACTIHWHGQY32/
https://security.gentoo.org/glsa/202101-17
https://bugzilla.redhat.com/show_bug.cgi?id=1881875
https://www.jsof-tech.com/disclosures/dnspooq/
https://lists.debian.org/debian-lts-announce/2021/03/msg00027.html
Common Vulnerability Exposure (CVE) ID: CVE-2020-25682
https://bugzilla.redhat.com/show_bug.cgi?id=1882014
Common Vulnerability Exposure (CVE) ID: CVE-2020-25683
https://bugzilla.redhat.com/show_bug.cgi?id=1882018
Common Vulnerability Exposure (CVE) ID: CVE-2020-25684
https://www.arista.com/en/support/advisories-notices/security-advisories/12135-security-advisory-61
https://bugzilla.redhat.com/show_bug.cgi?id=1889686
Common Vulnerability Exposure (CVE) ID: CVE-2020-25685
https://bugzilla.redhat.com/show_bug.cgi?id=1889688
Common Vulnerability Exposure (CVE) ID: CVE-2020-25686
https://bugzilla.redhat.com/show_bug.cgi?id=1890125
Common Vulnerability Exposure (CVE) ID: CVE-2020-25687
https://bugzilla.redhat.com/show_bug.cgi?id=1891568

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2021.0059
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2021-0059)
Resumen:	The remote host is missing an update for the 'dnsmasq' package(s) announced via the MGASA-2021-0059 advisory.
Descripción:	Summary: The remote host is missing an update for the 'dnsmasq' package(s) announced via the MGASA-2021-0059 advisory. Vulnerability Insight: Multiples vulnerabilities have been discovered in dnsmasq up to version 2.82: - subtle errors in dnsmasq's protections against cache-poisoning attacks (CVE-2020-25684, CVE-2020-25685 and CVE-2020-25686) - buffer overflow in dnsmasq's DNSSEC code (CVE-2020-25681, CVE-2020-25682, CVE-2020-25683 and CVE-2020-25687) Affected Software/OS: 'dnsmasq' package(s) on Mageia 7. Solution: Please install the updated package(s). CVSS Score: 8.3 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2020-25681 Debian Security Information: DSA-4844 (Google Search) https://www.debian.org/security/2021/dsa-4844 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QGB7HL3OWHTLEPSMLDGOMXQKG3KM2QME/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WYW3IR6APUSKOYKL5FT3ACTIHWHGQY32/ https://security.gentoo.org/glsa/202101-17 https://bugzilla.redhat.com/show_bug.cgi?id=1881875 https://www.jsof-tech.com/disclosures/dnspooq/ https://lists.debian.org/debian-lts-announce/2021/03/msg00027.html Common Vulnerability Exposure (CVE) ID: CVE-2020-25682 https://bugzilla.redhat.com/show_bug.cgi?id=1882014 Common Vulnerability Exposure (CVE) ID: CVE-2020-25683 https://bugzilla.redhat.com/show_bug.cgi?id=1882018 Common Vulnerability Exposure (CVE) ID: CVE-2020-25684 https://www.arista.com/en/support/advisories-notices/security-advisories/12135-security-advisory-61 https://bugzilla.redhat.com/show_bug.cgi?id=1889686 Common Vulnerability Exposure (CVE) ID: CVE-2020-25685 https://bugzilla.redhat.com/show_bug.cgi?id=1889688 Common Vulnerability Exposure (CVE) ID: CVE-2020-25686 https://bugzilla.redhat.com/show_bug.cgi?id=1890125 Common Vulnerability Exposure (CVE) ID: CVE-2020-25687 https://bugzilla.redhat.com/show_bug.cgi?id=1891568
Copyright	Copyright (C) 2022 Greenbone AG