oss-sec mailing list archives

Re: Questionable CVE's reported against dnsmasq

From: Simon McVittie <smcv () debian org>
Date: Tue, 28 Oct 2025 09:53:25 +0000

On Mon, 27 Oct 2025 at 19:26:47 -0700, nightmare.yeah27 () aceecat org wrote:

On Mon, Oct 27, 2025 at 09:37:03PM -0400, Demi Marie Obenour wrote:

I suspect that OPNsense generates dnsmasq and Unbound
configuration files from data provided in the web UI.


And OpenWRT. Definitely. Not sure how much validation there is.

The OpenWRT web UI can also execute arbitrary code (most obviously viaSystem -> Startup -> Local Startup which directly edits /etc/rc.local),so an authenticated user of the OpenWRT web UI is already on thesecure/trusted side of the airtight hatchway, and it isn't avulnerability if they can also execute arbitrary code in some moreconvoluted way than just writing it into /etc/rc.local.


    smcv

Current thread:

Re: Questionable CVE's reported against dnsmasq, (continued)
- - - Re: Questionable CVE's reported against dnsmasq Olle E. Johansson (Nov 02)
    - Re: Questionable CVE's reported against dnsmasq Art Manion (Nov 03)
    - Re: Questionable CVE's reported against dnsmasq Olle E. Johansson (Nov 04)
    - Re: Questionable CVE's reported against dnsmasq Art Manion (Nov 04)
    - Re: Questionable CVE's reported against dnsmasq Olle E. Johansson (Nov 05)
    - Re: Questionable CVE's reported against dnsmasq Pedro Sampaio (Nov 05)
    - Re: Questionable CVE's reported against dnsmasq Olle E. Johansson (Nov 06)
    - Re: Questionable CVE's reported against dnsmasq Demi Marie Obenour (Oct 28)
    - Re: Questionable CVE's reported against dnsmasq Demi Marie Obenour (Oct 27)
    - Re: Questionable CVE's reported against dnsmasq nightmare . yeah27 (Oct 27)
    - Re: Questionable CVE's reported against dnsmasq Simon McVittie (Oct 28)
- Re: Questionable CVE's reported against dnsmasq Alan Coopersmith (Oct 29)
- Re: Questionable CVE's reported against dnsmasq Christian Fischer (Dec 03)