oss-sec mailing list archives

Re: Questionable CVE's reported against dnsmasq

From: Simon McVittie <smcv () debian org>
Date: Tue, 28 Oct 2025 09:53:25 +0000

On Mon, 27 Oct 2025 at 19:26:47 -0700, nightmare.yeah27 () aceecat org wrote:

On Mon, Oct 27, 2025 at 09:37:03PM -0400, Demi Marie Obenour wrote:

I suspect that OPNsense generates dnsmasq and Unbound
configuration files from data provided in the web UI.


And OpenWRT. Definitely. Not sure how much validation there is.

The OpenWRT web UI can also execute arbitrary code (most obviously viaSystem -> Startup -> Local Startup which directly edits /etc/rc.local),so an authenticated user of the OpenWRT web UI is already on thesecure/trusted side of the airtight hatchway, and it isn't avulnerability if they can also execute arbitrary code in some moreconvoluted way than just writing it into /etc/rc.local.


    smcv

Current thread:

Re: Questionable CVE's reported against dnsmasq, (continued)
- Re: Questionable CVE's reported against dnsmasq Moritz Mühlenhoff (Oct 27)
  - Re: Questionable CVE's reported against dnsmasq Collin Funk (Oct 27)
  - Re: Questionable CVE's reported against dnsmasq Michael Orlitzky (Oct 27)
    - Re: Questionable CVE's reported against dnsmasq Hank Leininger (Oct 27)
    - Re: Questionable CVE's reported against dnsmasq Solar Designer (Oct 27)
    - Re: Questionable CVE's reported against dnsmasq Douglas Bagnall (Oct 29)
    - Re: Questionable CVE's reported against dnsmasq Art Manion (Oct 31)
    - Re: Questionable CVE's reported against dnsmasq Demi Marie Obenour (Oct 28)
    - Re: Questionable CVE's reported against dnsmasq Demi Marie Obenour (Oct 27)
    - Re: Questionable CVE's reported against dnsmasq nightmare . yeah27 (Oct 27)
    - Re: Questionable CVE's reported against dnsmasq Simon McVittie (Oct 28)
- Re: Questionable CVE's reported against dnsmasq Alan Coopersmith (Oct 29)