oss-sec mailing list archives

Re: Questionable CVE's reported against dnsmasq

From: nightmare.yeah27 () aceecat org
Date: Mon, 27 Oct 2025 19:26:47 -0700

On Mon, Oct 27, 2025 at 09:37:03PM -0400, Demi Marie Obenour wrote:

instance, I suspect that OPNsense generates dnsmasq and Unbound
configuration files from data provided in the web UI.


And OpenWRT. Definitely. Not sure how much validation there is.

-- 
Ian

Current thread:

Re: Questionable CVE's reported against dnsmasq, (continued)
- - - Re: Questionable CVE's reported against dnsmasq Peter Gutmann (Nov 14)
    - Re: Questionable CVE's reported against dnsmasq Olle E. Johansson (Nov 02)
    - Re: Questionable CVE's reported against dnsmasq Art Manion (Nov 03)
    - Re: Questionable CVE's reported against dnsmasq Olle E. Johansson (Nov 04)
    - Re: Questionable CVE's reported against dnsmasq Art Manion (Nov 04)
    - Re: Questionable CVE's reported against dnsmasq Olle E. Johansson (Nov 05)
    - Re: Questionable CVE's reported against dnsmasq Pedro Sampaio (Nov 05)
    - Re: Questionable CVE's reported against dnsmasq Olle E. Johansson (Nov 06)
    - Re: Questionable CVE's reported against dnsmasq Demi Marie Obenour (Oct 28)
    - Re: Questionable CVE's reported against dnsmasq Demi Marie Obenour (Oct 27)
    - Re: Questionable CVE's reported against dnsmasq nightmare . yeah27 (Oct 27)
    - Re: Questionable CVE's reported against dnsmasq Simon McVittie (Oct 28)
- Re: Questionable CVE's reported against dnsmasq Alan Coopersmith (Oct 29)
- Re: Questionable CVE's reported against dnsmasq Christian Fischer (Dec 03)