Dnsmasq · Dnsmasq · CVE-2017-15107
Name of the Vulnerable Software and Affected Versions:
Dnsmasq versions up to and including 2.78
Description:
A vulnerability was found in the implementation of DNSSEC in Dnsmasq. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames that actually exist.
Recommendations:
For versions up to and including 2.78, update to a version that includes a fix for this issue to prevent improper interpretation of wildcard synthesized NSEC records.