What the vulnerability does

01Description

A vulnerability was found in the implementation of DNSSEC in Dnsmasq up to and including 2.78. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames that actually exist.

Key dates

02Disclosure timeline

January 23, 2018 CVE published
August 5, 2024 Record updated