Your submission was sent successfully! Close

CVE-2017-15107

Published: 23 January 2018

A vulnerability was found in the implementation of DNSSEC in Dnsmasq up to and including 2.78. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames that actually exist.

Priority

Low

CVSS 3 base score: 7.5

Status

Package Release Status
dnsmasq
Launchpad, Ubuntu, Debian
artful Ignored
(reached end-of-life)
bionic Not vulnerable
(2.79-1)
cosmic Not vulnerable
(2.79-1)
disco Not vulnerable
(2.79-1)
eoan Not vulnerable
(2.79-1)
focal Not vulnerable
(2.79-1)
groovy Not vulnerable
(2.79-1)
precise Not vulnerable
(code not present)
trusty Not vulnerable
(code not present)
upstream
Released (2.79-1)
xenial
Released (2.75-1ubuntu0.16.04.10)