Kitz ADSL Broadband Information
adsl spacer  
Support this site
Home Broadband ISPs Tech Routers Wiki Forum
   Compare ISP   Rate your ISP
   Glossary   Glossary
Please login or register.

Login with username, password and session length
Advanced search  


Author Topic: Zyxel security advisory for DNSpooq  (Read 317 times)


  • Kitizen
  • ****
  • Posts: 1149
Zyxel security advisory for DNSpooq
« on: May 21, 2021, 01:27:01 PM »


Zyxel will release patches for products affected by the Dnsmasq vulnerabilities reported by CERT/CC. Users are advised to install the applicable firmware updates or follow the best practices for optimal protection.

What is the vulnerability?

Dnsmasq, open-source software that provides DNS forwarding and caching, has two sets of vulnerabilities, as listed below. Dubbed as DNSpooq, these vulnerabilities could allow an attacker to corrupt memory on the target device and perform cache poisoning attacks against the target environment.

Memory corruption vulnerabilities due to boundary checking errors in DNSSEC handling code. (CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, and CVE-2020-25687)
DNS response validation vulnerabilities that can result in DNS cache poisoning. (CVE-2020-25684, CVE-2020-25685, and CVE-2020-25686)

This is a interesting read


  • Kitizen
  • ****
  • Posts: 3876
Re: Zyxel security advisory for DNSpooq
« Reply #1 on: May 22, 2021, 01:26:59 AM »

It was linked in your previous thread back in March.,25679.msg431705.html#msg431705

Patches due in June for some modems.
Talktalk FTTP 550/75 - Speedtest - BQM