[El-errata] ELSA-2026-20589 Important: Oracle Linux 8 dnsmasq security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Wed May 27 10:29:47 UTC 2026
Oracle Linux Security Advisory ELSA-2026-20589
http://linux.oracle.com/errata/ELSA-2026-20589.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
x86_64:
dnsmasq-2.79-36.el8_10.x86_64.rpm
dnsmasq-utils-2.79-36.el8_10.x86_64.rpm
aarch64:
dnsmasq-2.79-36.el8_10.aarch64.rpm
dnsmasq-utils-2.79-36.el8_10.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/dnsmasq-2.79-36.el8_10.src.rpm
Related CVEs:
CVE-2026-2291
CVE-2026-4890
CVE-2026-4891
CVE-2026-4892
CVE-2026-4893
Description of changes:
[2.79-36]
- Prevent overflow in extract_name function (CVE-2026-2291)
- Prevent DoS in DNSSEC validation (CVE-2026-4890)
- Prevent out-of-bounds read in DNSSEC validation (CVE-2026-4891)
- Prevent out-of-bounds write in DHCPv6 server (CVE-2026-4892)
- Prevent source check avoidance by RFC 7871 client-subnet (CVE-2026-4893)
More information about the El-errata
mailing list