摘要:
dnsmasq security update
安全等级: Medium
公告ID: KylinSec-SA-2024-3232
发布日期: 2024年7月26日
关联CVE: CVE-2023-49441
Dnsmasq provides network infrastructure for small networks: DNS, DHCP, router advertisement and network boot. It is designed to be lightweight and have a small footprint, suitable for resource constrained routers and firewalls. It has also been widely used for tethering on smartphones and portable hotspots, and to support virtual networking in virtualisation frameworks.
Security Fix(es):
dnsmasq 2.9 is vulnerable to Integer Overflow via forward_query.(CVE-2023-49441)
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2023-49441 | KY3.4-5A | dnsmasq | Fixed |
| 软件名称 | 架构 | 版本号 |
|---|---|---|
| dnsmasq | x86_64 | 2.82-15.kb1.ky3_4 |
| dnsmasq-help | x86_64 | 2.82-15.kb1.ky3_4 |
| dnsmasq | aarch64 | 2.82-15.kb1.ky3_4 |
| dnsmasq-help | aarch64 | 2.82-15.kb1.ky3_4 |
方法一:下载安装包进行升级安装
1、通过下载链接下载需要升级的升级包保存,如 xxx.rpm
2、通过rpm命令升级,如 rpm -Uvh xxx.rpm
方法二:通过软件源进行升级安装
1、保持能够连接上互联网
2、通过yum命令升级指定的包,如 yum install 包名
