CVE-2023-28450

Summary

CVE	CVE-2023-28450
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-03-15 21:15:00 UTC
Updated	2023-11-07 04:10:00 UTC
Description	An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020.

Risk And Classification

Problem Types: NVD-CWE-noinfo

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Thekelleys	Dnsmasq	All	All	All	All

References

Reference	Source	Link	Tags
Dnsmasq - network services for small networks.	MISC	thekelleys.org.uk
thekelleys.org.uk Git - dnsmasq.git/blob - CHANGELOG	MISC	thekelleys.org.uk
thekelleys.org.uk Git		thekelleys.org.uk
[SECURITY] Fedora 37 Update: dnsmasq-2.89-2.fc37 - package-announce - Fedora Mailing-Lists		lists.fedoraproject.org
[SECURITY] Fedora 38 Update: dnsmasq-2.89-2.fc38 - package-announce - Fedora Mailing-Lists		lists.fedoraproject.org
[SECURITY] Fedora 38 Update: dnsmasq-2.89-2.fc38 - package-announce - Fedora Mailing-Lists	FEDORA	lists.fedoraproject.org
[SECURITY] Fedora 37 Update: dnsmasq-2.89-2.fc37 - package-announce - Fedora Mailing-Lists	FEDORA	lists.fedoraproject.org
thekelleys.org.uk Git - dnsmasq.git/commit	MISC	thekelleys.org.uk
CAPEC - CAPEC-495: UDP Fragmentation (Version 3.8)	MISC	capec.mitre.org
thekelleys.org.uk Git		thekelleys.org.uk
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

161123 Oracle Enterprise Linux Security Update for dnsmasq (ELSA-2023-6524)
161141 Oracle Enterprise Linux Security Update for dnsmasq (ELSA-2023-7046)
199302 Ubuntu Security Notification for Dnsmasq Vulnerability (USN-6034-1)
200141 Ubuntu Security Notification for Dnsmasq Vulnerabilities (USN-6657-1)
242392 Red Hat Update for dnsmasq (RHSA-2023:6524)
242419 Red Hat Update for dnsmasq (RHSA-2023:7046)
243146 Red Hat Update for dnsmasq (RHSA-2024:1544)
243150 Red Hat Update for dnsmasq (RHSA-2024:1545)
283859 Fedora Security Update for dnsmasq (FEDORA-2023-828bf01834)
284204 Fedora Security Update for dnsmasq (FEDORA-2023-eeca11a4df)
355397 Amazon Linux Security Advisory for dnsmasq : ALAS2-2023-2069
355422 Amazon Linux Security Advisory for dnsmasq : ALAS2023-2023-192
355427 Amazon Linux Security Advisory for dnsmasq : ALAS-2023-1758
357079 Amazon Linux Security Advisory for dnsmasq : ALAS2DNSMASQ-2023-001
378621 Alibaba Cloud Linux Security Update for dnsmasq (ALINUX2-SA-2023:0029)
378625 Alibaba Cloud Linux Security Update for dnsmasq (ALINUX3-SA-2023:0054)
502697 Alpine Linux Security Update for dnsmasq
502699 Alpine Linux Security Update for dnsmasq
502700 Alpine Linux Security Update for dnsmasq
502721 Alpine Linux Security Update for dnsmasq
503105 Alpine Linux Security Update for dnsmasq
505867 Alpine Linux Security Update for dnsmasq
672887 EulerOS Security Update for dnsmasq (EulerOS-SA-2023-1817)
672911 EulerOS Security Update for dnsmasq (EulerOS-SA-2023-1799)
672988 EulerOS Security Update for dnsmasq (EulerOS-SA-2023-1839)
672989 EulerOS Security Update for dnsmasq (EulerOS-SA-2023-1863)
673094 EulerOS Security Update for dnsmasq (EulerOS-SA-2023-2189)
673104 EulerOS Security Update for dnsmasq (EulerOS-SA-2023-2141)
673127 EulerOS Security Update for dnsmasq (EulerOS-SA-2023-2287)
673154 EulerOS Security Update for dnsmasq (EulerOS-SA-2023-2263)
753930 SUSE Enterprise Linux Security Update for dnsmasq (SUSE-SU-2023:1930-1)
753975 SUSE Enterprise Linux Security Update for dnsmasq (SUSE-SU-2023:2123-1)
906703 Common Base Linux Mariner (CBL-Mariner) Security Update for dnsmasq (25650-1)
906747 Common Base Linux Mariner (CBL-Mariner) Security Update for dnsmasq (25660-1)
941396 AlmaLinux Security Update for dnsmasq (ALSA-2023:6524)
941475 AlmaLinux Security Update for dnsmasq (ALSA-2023:7046)