Nick Sampanis

**Name of the Vulnerable Software and Affected Versions** Dnsmasq versions prior to 2.73rc4 **Description** The issue allows remote attackers to cause a denial of service and potentially read process memory due to a malfunction in handling DNS requests. This can occur when a malformed DNS request is sent, leading to an out-of-bounds read and crash. The problem is related to the `tcp request` function not properly handling the return value of the `setup reply` function. **Recommendations** For versions prior to 2.73rc4, update to version 2.73rc4 or later to resolve the issue. As a temporary workaround, consider restricting access to the DNS server to minimize the risk of exploitation.