vulnerability

Ubuntu: (Multiple Advisories) (CVE-2023-28450): Dnsmasq vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:N/I:N/A:C)	Mar 15, 2023	Apr 21, 2023	Apr 16, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

Mar 15, 2023

Added

Apr 21, 2023

Modified

Apr 16, 2026

Description

An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020.

Solutions

ubuntu-pro-upgrade-dnsmasq-baseubuntu-upgrade-dnsmasq-base

References

CVE-2023-28450
https://attackerkb.com/topics/CVE-2023-28450
EUVD-EUVD-2023-32132
UBUNTU-USN-6034-1
UBUNTU-USN-6657-1
https://euvd.enisa.europa.eu/vulnerability/EUVD-2023-32132

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report