dnsmasq < 2.76 Empty Address Denial of Service (CVE-2015-8899)
Medium Nessus Plugin ID 106138
SynopsisThe remote DNS / DHCP service is affected by a denial of service vulnerability.
DescriptionThe version of dnsmasq installed on the remote host is at least 2.73 and prior to 2.76, and thus, is affected by a denial of service vulnerability when handling a reply that a given name is empty while the A or AAAA record is defined locally and in a hosts file.
SolutionUpgrade to dnsmasq 2.76 or later.