Release date:
2026-05-22 13:04:19 UTC
Description:
- CVE-2026-2291: heap OOB write via undersized union bigname buffer
- CVE-2026-4890: dnssec NSEC bitmap parsing infinite loop
- CVE-2026-4891: dnssec missing rdlen validation in RRSIG records
- CVE-2026-4892: helper buffer overflow with large DHCPv6 CLIDs
- CVE-2026-4893: broken client subnet validation in process_reply
Updated packages:
-
dnsmasq-2.85-6.el9_2.tuxcare.els3.x86_64.rpm
sha:c4c0f1bf15a079643a5bfa7283cd9dbbae84af58bc57cfba2a2204d66a213644
-
dnsmasq-utils-2.85-6.el9_2.tuxcare.els3.x86_64.rpm
sha:05c7521d94855940de09198ff0bf842ba9e48f84e3dcf762f23297e69f91b588
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
