A vulnerability was found in the implementation of DNSSEC in Dnsmasq up to and including 2.78. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames that actually exist.
[
{
"product": "dnsmasq",
"vendor": "Simon Kelley",
"versions": [
{
"status": "affected",
"version": "up to and including 2.78"
}
]
}
]