Xu Mingjie

**Name of the Vulnerable Software and Affected Versions** dnsmasq versions prior to 2.81 **Description** A memory leak in dnsmasq allows remote attackers to cause a denial of service via vectors involving DHCP response creation. The issue is related to the `create helper()` function in the `/src/helper.c` component of the DNS server, which is associated with unlimited memory allocation. This enables a remote attacker to exploit the vulnerability using a specially crafted DHCP response, leading to memory consumption and a denial of service. **Recommendations** For versions prior to 2.81, update to version 2.81 or later to resolve the issue. As a temporary workaround, consider restricting access to the DHCP response creation functionality to minimize the risk of exploitation.