DNSMasq Vulnerabilities Found


SOFTWARE LINK(s): https://www.thekelleys.org.uk/dnsmasq/

CVEs: CVE-2020-25684, CVE-2020-25685, and CVE-2020-25686

NOTES: Dnsmasq versions 2.78 to 2.82 were all found to be affected by the three flaws.

Researchers are calling it DNSpooq
I have a Raspberry Pi running the AD killing software called Pi-Hole – Its running DNSmasq.

Simply put, there is a good chance this vulnerability exists in many devices outside of the “standard server’ realm such as IoT devices and appliances.