Debian DSA-3989-1 : dnsmasq - security update
High Nessus Plugin ID 103608
SynopsisThe remote Debian host is missing a security-related update.
DescriptionFelix Wilhelm, Fermin J. Serna, Gabriel Campana, Kevin Hamacher, Ron Bowes and Gynvael Coldwind of the Google Security Team discovered several vulnerabilities in dnsmasq, a small caching DNS proxy and DHCP/TFTP server, which may result in denial of service, information leak or the execution of arbitrary code.
SolutionUpgrade the dnsmasq packages.
For the oldstable distribution (jessie), these problems have been fixed in version 2.72-3+deb8u2.
For the stable distribution (stretch), these problems have been fixed in version 2.76-5+deb9u1.