Behind the Masq: Yet more DNS, and DHCP, vulnerabilities (Google Security Blog)

The Google Security Blog disclosesthe results of a security audit of the Dnsmasq name resolver."We discovered seven distinct issues (listed below) over the courseof our regular internal security assessments. Once we determined theseverity of these issues, we worked to investigate their impact andexploitability and then produced internal proofs of concept for each ofthem. We also worked with the maintainer of Dnsmasq, Simon Kelley, toproduce appropriate patches and mitigate the issue."Version 2.78 contains the fixes. Anybody running an OpenWRT/LEDE routerlikely has a vulnerable version of Dnsmasq and will want to look into updating.