Royce M

**Name of the Vulnerable Software and Affected Versions** dnsmasq (affected versions not specified) **Description** The `extract name()` function can be abused to cause a heap buffer overflow, a condition where data exceeds the allocated memory buffer on the heap. This allows an attacker to inject false DNS cache entries, potentially redirecting DNS lookups to an attacker-controlled IP address or causing a Denial of Service (DoS). **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** dnsmasq (affected versions not specified) **Description** A Denial of Service (DoS) issue in the DNSSEC validation of dnsmasq allows remote attackers to cause a service disruption by sending a crafted DNS packet. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** dnsmasq (affected versions not specified) **Description** A heap-based out-of-bounds read in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service by sending a crafted DNS packet. A heap-based out-of-bounds read occurs when a program reads data past the end of the allocated memory on the heap, which can lead to crashes or information disclosure. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** dnsmasq (affected versions not specified) **Description** A heap-based out-of-bounds write in the DHCPv6 implementation allows local attackers to execute arbitrary code with root privileges by sending a crafted DHCPv6 packet. A heap-based out-of-bounds write occurs when a program writes data past the end of a memory buffer allocated on the heap, which can lead to memory corruption. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** dnsmasq (affected versions not specified) **Description** An information disclosure issue allows remote attackers to bypass source checks by using a crafted DNS packet containing RFC 7871 client subnet information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.