Not a user yet?
Log in Register for free Suggest a product
The manufacturer Canonical has not yet set up its devicebase profile. Content such as updates, compatibilities and support may only be maintained with a delay.
Update

USN-7370-1: SmartDNS vulnerabilities

Ubuntu ServerUbuntu Server
Canonical
Update from patrick-devicebaseUpdate from:
patrick-devicebase (expert)

USN-7370-1: SmartDNS vulnerabilities
25 March 2025

Several security issues were fixed in SmartDNS.

Releases

  • Ubuntu 24.10
  • Ubuntu 24.04 LTS
  • Ubuntu 22.04 LTS

Packages
smartdns - local DNS server to obtain the fastest IP for the best experience

Details
It was discovered that SmartDNS did not correctly align certain objects in
memory, leading to undefined behaviour. An attacker could possibly use this
issue to cause a denial of service or execute arbitrary code. This issue
only affected Ubuntu 22.04 LTS. (CVE-2024-24198, CVE-2024-24199)

It was discovered that SmartDNS did not correctly handle certain inputs,
which could lead to an integer overflow. A remote attacker could possibly
use this issue to cause a denial of service. This issue only affected
Ubuntu 24.04 LTS and Ubuntu 24.10. (CVE-2024-42643)

Update instructions
The problem can be corrected by updating your system to the following package versions:

Ubuntu 24.10

  • smartdns - 46+dfsg-1ubuntu0.1
    Ubuntu 24.04
  • smartdns - 45+dfsg-1ubuntu0.1~esm1
    Ubuntu 22.04
  • smartdns - 35+dfsg-1ubuntu0.1~esm1
    In general, a standard system update will make all the necessary changes.
Version: 24.04 LTS Link
More updatesTo the product
Receive Important Update Messages Stay tuned for upcoming Canonical Ubuntu Server updates

More from the Operating Systems section

Was the content helpful to you?

Advertisement Advertise here?
Udemy IT certification ad