CVE-2013-0198

Name of the Vulnerable Software and Affected Versions Dnsmasq versions prior to 2.66test2

Description The issue allows remote attackers to cause a denial of service, specifically traffic amplification, via spoofed TCP-based DNS queries. This is possible when Dnsmasq is used with certain libvirt configurations and replies to queries from prohibited interfaces.

Recommendations For versions prior to 2.66test2, update to version 2.66test2 or later to resolve the issue. As a temporary workaround, consider restricting access to the DNS service to minimize the risk of exploitation.