| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| CVE-2022-0934.patch | [PATCH 1/1] Fix write-after-free error in DHCPv6 code. CVE-2022-0934 refers. | Simon Kelley <simon@thekelleys.org.uk> | no | 2022-03-31 | ||
| CVE-2023-28450.patch | [PATCH 1/1] Set the default maximum DNS UDP packet size to 1232. http://www.dnsflagday.net/2020/ refers. Thanks to Xiang Li for the prompt. |
Simon Kelley <simon@thekelleys.org.uk> | no | 2023-03-07 | ||
| CVE-2023-50387-CVE-2023-50868.patch | Patch to fix CVE 2023-50387 and CVE 2023-50868 This patch fixed two CVEs, commonly known as "keytrap" and "NSEC3" security issues. This quilt patch is loosely based on the upstream 2.90 patch and the backport to dnsmasq 2.79 from Rockylinux. Simon Kelley <simon@thekelleys.org.uk>, Lee Garrett <debian@rocketjump.eu>, https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=commit;h=214a046f47b9f7dd56f5eef3a8678ccbd6e973b7 |
Tomas Korbar <tkorbar@redhat.com>, | not-needed | https://git.rockylinux.org/staging/rpms/dnsmasq/-/blob/r8/SOURCES/dnsmasq-2.90-CVE-2023-50387-CVE-2023-50868.patch, | 2024-11-17 |