oss-sec mailing list archives
Re: Questionable CVE's reported against dnsmasq
From: Stuart Henderson <stu () spacehopper org>
Date: Tue, 28 Oct 2025 19:50:38 +0000
On 2025/10/27 21:40, Sebastian Pipping wrote:
Hello Stuart, On 10/27/25 20:45, Stuart Henderson wrote:On 2025/10/27 19:51, Sebastian Pipping wrote:Also, fixes without a CVE will not be backported downstream.That depends on the downstream.I'm happy to learn which downstreams backport security issues without a CVE, in practice. Do you have an example or two?
OpenBSD does for some ports, but it's down to the individual port maintainer.
Current thread:
- Questionable CVE's reported against dnsmasq Alan Coopersmith (Oct 27)
- Re: Questionable CVE's reported against dnsmasq Jeremy Stanley (Oct 27)
- Re: Questionable CVE's reported against dnsmasq Andrew Latham (Oct 27)
- Re: Questionable CVE's reported against dnsmasq Sebastian Pipping (Oct 27)
- Re: Questionable CVE's reported against dnsmasq Stuart Henderson (Oct 27)
- Re: Questionable CVE's reported against dnsmasq Sebastian Pipping (Oct 27)
- Re: Questionable CVE's reported against dnsmasq Matthew Fernandez (Oct 27)
- Re: Questionable CVE's reported against dnsmasq Eli Schwartz (Oct 27)
- Re: Questionable CVE's reported against dnsmasq Stuart Henderson (Oct 28)
- Re: Questionable CVE's reported against dnsmasq Salvatore Bonaccorso (Oct 29)
- Re: Questionable CVE's reported against dnsmasq Petr Menšík (Oct 31)
- Re: Questionable CVE's reported against dnsmasq Sebastian Pipping (Oct 31)
- Re: Questionable CVE's reported against dnsmasq Andrew Latham (Oct 27)
- Re: Questionable CVE's reported against dnsmasq Jeremy Stanley (Oct 27)
- Re: Questionable CVE's reported against dnsmasq Collin Funk (Oct 27)
- Re: Questionable CVE's reported against dnsmasq Michael Orlitzky (Oct 27)
- Re: Questionable CVE's reported against dnsmasq Hank Leininger (Oct 27)
- Re: Questionable CVE's reported against dnsmasq Solar Designer (Oct 27)
- Re: Questionable CVE's reported against dnsmasq Douglas Bagnall (Oct 29)