WHAT HAPPENED?

CISA and the CERT Coordination Center (CERT/CC) are aware of multiple vulnerabilities affecting Dnsmasq.

Advanced Users and Affected Systems: For a complete description of the vulnerabilities, impacted products and updates refer to:

• Software Engineering Institute - Vulnerability Note VU#434904 - Dnsmasq is vulnerable to memory corruption and cache poisoning
• CISA - ICS Advisory (ICSA-21-019-01)

WHAT'S THE PROBLEM?

Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.

RELATED LINKS

• IT Security