Nixpkgs security tracker

Login with GitHub

Suggestions search

Published
Filter by:
With package: dnsmasq

Found 1 matching suggestions

View:
Compact
Detailed
Permalink CVE-2026-6507
7.5 HIGH
  • CVSS version: 3.1
  • Attack vector (AV): NETWORK
  • Attack complexity (AC): LOW
  • Privileges required (PR): NONE
  • User interaction (UI): NONE
  • Scope (S): UNCHANGED
  • Confidentiality impact (C): NONE
  • Integrity impact (I): NONE
  • Availability impact (A): HIGH
updated 1 week, 3 days ago by @LeSuisse Activity log
  • Created suggestion 1 week, 4 days ago
  • @LeSuisse ignored package prometheus-dnsmasq-exporter 1 week, 3 days ago
  • @LeSuisse accepted 1 week, 3 days ago
  • @LeSuisse published on GitHub 1 week, 3 days ago
Dnsmasq: dnsmasq: denial of service due to out-of-bounds write in dhcp bootreply processing

A flaw was found in dnsmasq. A remote attacker could exploit an out-of-bounds write vulnerability by sending a specially crafted BOOTREPLY (Bootstrap Protocol Reply) packet to a dnsmasq server configured with the `--dhcp-split-relay` option. This can lead to memory corruption, causing the dnsmasq daemon to crash and resulting in a denial of service (DoS).

References

Affected products

rhcos
dnsmasq

Matching in nixpkgs

pkgs.dnsmasq

Integrated DNS, DHCP and TFTP server for small networks

  • nixos-unstable 2.92
    • nixpkgs-unstable 2.92
    • nixos-unstable-small 2.92
  • nixos-25.11 2.91
    • nixos-25.11-small 2.91
    • nixpkgs-25.11-darwin 2.91
Ignored packages (1)

Package maintainers