[Dnsmasq-discuss] DHCPv6 Protocol Compliance Violations in DNSMASQ

Dan Schaper dan.schaper at pi-hole.net
Fri Jul 18 00:48:51 UTC 2025


Can you provide your report in a PDF please. I'm quite surprised that a 
security researcher would provide proof via a zipfile of unknown 
provenance and unknown content.

Dan


------ Original Message ------
>From "宋相普" <songxiangpu at mail.sdu.edu.cn>
To dnsmasq-discuss at lists.thekelleys.org.uk
Date 7/16/2025 7:02:19 AM
Subject [Dnsmasq-discuss] DHCPv6 Protocol Compliance Violations in 
DNSMASQ

>Hi,
>
>We are writing to report the results of a recent analysis we conducted 
>on the DHCPv6 implementation in dnsmasq. Our work focused on verifying 
>its compliance against the most recent DHCPv6 specification, RFC 8415.
>
>During our analysis, we identified dozens of instances where the 
>implementation's behavior deviates from the mandatory requirements of 
>the RFC. While many of these are minor protocol non-compliances, 
>several have potential security implications that we believe warrant a 
>high-priority review.
>
>Due to the number of findings, we have compiled a comprehensive report 
>detailing each issue, which is provided as an attachment to this email. 
>We hope this report is helpful.
>
>Best regards,
>
>Xiangpu Song
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/attachments/20250718/54334176/attachment.htm>


More information about the Dnsmasq-discuss mailing list