Page 1 of 1
dnsmasq DNSpooq vulnerabilities
Posted: Sat Jan 23, 2021 6:57 am
by coits
Hi All,
Just want to check if gatgoyle1.12 has a patch for this DNSpooq vulnerabilities.
https://forum.openwrt.org/t/security-a ... ies/85903
Thanks,
Coits
Re: dnsmasq DNSpooq vulnerabilities
Posted: Sat Jan 23, 2021 7:10 am
by Lantis
I will patch Gargoyle when they sort it all out on their end. There were bugs introduced. They're pretty close now.
For now, you can follow the workaround in the first post to manually block it.
Re: dnsmasq DNSpooq vulnerabilities
Posted: Sat Jan 23, 2021 7:23 am
by coits
Thank you in advance!
Re: dnsmasq DNSpooq vulnerabilities
Posted: Sat Jan 23, 2021 7:41 pm
by coits
hi All,
I’m using dnssec feature of dnsmasq-full, for now I will be working on the workaround of this vulrabilities.
Thanks
Re: dnsmasq DNSpooq vulnerabilities
Posted: Sat Jan 23, 2021 8:45 pm
by Lantis
To clarify my previous post, the only fix that will be available for 1.12 will be the manual workaround.
1.13 will have the updated dnsmasq
Re: dnsmasq DNSpooq vulnerabilities
Posted: Sun Jan 24, 2021 4:55 am
by coits
I will try to manually install dnsmasq-full with gargoyle1.13.
I hope there will be no dependencies issue.
Thank you.