Primary

Context

dnsmasq Denial-of-Service Vulnerability in DNSSEC Validation

Vulnerability

Patched

A denial-of-service vulnerability has been identified in dnsmasq's DNSSEC validation process. This vulnerability allows remote attackers to cause the dnsmasq process to enter an infinite loop, leading to a denial-of-service condition. The issue arises from the improper handling of crafted DNS packets, which can cause the dnsmasq service to become unresponsive.

Impact

Exploitation of this vulnerability causes the dnsmasq process to crash or become unresponsive, disrupting DNS resolution and affecting services that rely on it.

Remediation

dnsmasq has released version 2.92rel2 to address this vulnerability. Users should upgrade to this version.

Added: May 11, 2026, 6:57 PM

Updated: May 11, 2026, 6:57 PM

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

2.5

exploitability

7.7

remediation

7.7

relevance

8.0

threat

3.2

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

2.5

exploitability

7.7

remediation

7.7

relevance

8.0

threat

3.2

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

dnsmasq Denial-of-Service Vulnerability in DNSSEC Validation

Vulnerability

Impact

Remediation

Affected Products

dnsmasq

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating