发布于3月6日3月6日 Members Amazon Linux 2023: CVE-2023-28450: Medium priority package update for dnsmasq Severity 8 CVSS (AV:N/AC:L/Au:N/C:N/I:N/A:C) Published 03/15/2023 Created 02/14/2025 Added 02/14/2025 Modified 02/14/2025 Description An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020. A flaw was found in Dnsmasq. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020. Solution(s) amazon-linux-2023-upgrade-dnsmasq amazon-linux-2023-upgrade-dnsmasq-debuginfo amazon-linux-2023-upgrade-dnsmasq-debugsource amazon-linux-2023-upgrade-dnsmasq-utils amazon-linux-2023-upgrade-dnsmasq-utils-debuginfo References https://attackerkb.com/topics/cve-2023-28450 CVE - 2023-28450 https://alas.aws.amazon.com/AL2023/ALAS-2023-192.html
