CVE-2026-6507
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
A flaw was found in dnsmasq. A remote attacker could exploit an out-of-bounds write vulnerability by sending a specially crafted BOOTREPLY (Bootstrap Protocol Reply) packet to a dnsmasq server configured with the --dhcp-split-relay option. This can lead to memory corruption, causing the dnsmasq daemon to crash and resulting in a denial of service (DoS).
Affected Software
| Vendor | Product | Version Range | Status |
|---|
Weaknesses
- CWE-787: Out-of-bounds Write
Workarounds
To mitigate this issue, ensure that the dnsmasq service is not configured with the --dhcp-split-relay option. If this option is currently in use, remove it from the dnsmasq configuration. After modifying the configuration, the dnsmasq service must be restarted for the changes to take effect. This may temporarily interrupt DHCP and DNS services provided by dnsmasq.
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: partial
References
- https://access.redhat.com/security/cve/CVE-2026-6507
- https://bugzilla.redhat.com/show_bug.cgi?id=2459181
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.