{"schema_version":"1.7.2","id":"OESA-2026-2964","modified":"2026-07-09T12:54:51Z","published":"2026-07-09T12:54:51Z","upstream":["CVE-2026-12725"],"summary":"dnsmasq security update","details":"Dnsmasq provides network infrastructure for small networks: DNS, DHCP, router advertisement and network boot. It is designed to be lightweight and have a small footprint, suitable for resource constrained routers and firewalls. It has also been widely used for tethering on smartphones and portable hotspots, and to support virtual networking in virtualisation frameworks.\r\n\r\nSecurity Fix(es):\n\nA heap-based buffer overflow was found in dnsmasq. When DNSSEC validation and\nquery logging are both enabled, logging of DS or DNSKEY replies containing\nunsupported algorithm or digest types can cause dnsmasq to write past the end\nof an internal logging buffer. A remote attacker able to supply such a DNS\nresponse may crash the dnsmasq process, resulting in denial of service.(CVE-2026-12725)","affected":[{"package":{"ecosystem":"openEuler:20.03-LTS-SP4","name":"dnsmasq","purl":"pkg:rpm/openEuler/dnsmasq&distro=openEuler-20.03-LTS-SP4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.82-22.oe2003sp4"}]}],"ecosystem_specific":{"aarch64":["dnsmasq-2.82-22.oe2003sp4.aarch64.rpm","dnsmasq-debuginfo-2.82-22.oe2003sp4.aarch64.rpm","dnsmasq-debugsource-2.82-22.oe2003sp4.aarch64.rpm","dnsmasq-help-2.82-22.oe2003sp4.aarch64.rpm"],"src":["dnsmasq-2.82-22.oe2003sp4.src.rpm"],"x86_64":["dnsmasq-2.82-22.oe2003sp4.x86_64.rpm","dnsmasq-debuginfo-2.82-22.oe2003sp4.x86_64.rpm","dnsmasq-debugsource-2.82-22.oe2003sp4.x86_64.rpm","dnsmasq-help-2.82-22.oe2003sp4.x86_64.rpm"]}}],"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2964"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-12725"}],"database_specific":{"severity":"Medium"}}
