Home / mailings [USN-8308-1] Dnsmasq vulnerability
Posted on 26 May 2026
Ubuntu Security==========================================================================Ubuntu Security Notice USN-8308-1
May 26, 2026
dnsmasq vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 26.04 LTS
Summary:
Dnsmasq could be made to crash or run programs if it received specially
crafted network traffic.
Software Description:
- dnsmasq: Small caching DNS proxy and DHCP/TFTP server
Details:
It was discovered that Dnsmasq incorrectly handled BOOTREPLY packets when
configured with the --dhcp-split-relay option. A remote attacker could
use this issue to cause Dnsmasq to crash, resulting in a denial of
service, or possibly execute arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 26.04 LTS
dnsmasq 2.92-1ubuntu0.3
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-8308-1
CVE-2026-6507
Package Information:
https://launchpad.net/ubuntu/+source/dnsmasq/2.92-1ubuntu0.3
--===============5310818322007543979==Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
