Can you provide your report in a PDF please. I'm quite surprised that a
security researcher would provide proof via a zipfile of unknown
provenance and unknown content.
Dan
------ Original Message ------
From "宋相普" <[email protected]>
To [email protected]
Date 7/16/2025 7:02:19 AM
Subject [Dnsmasq-discuss] DHCPv6 Protocol Compliance Violations in
DNSMASQ
Hi,
We are writing to report the results of a recent analysis we conducted
on the DHCPv6 implementation in dnsmasq. Our work focused on verifying
its compliance against the most recent DHCPv6 specification, RFC 8415.
During our analysis, we identified dozens of instances where the
implementation's behavior deviates from the mandatory requirements of
the RFC. While many of these are minor protocol non-compliances,
several have potential security implications that we believe warrant a
high-priority review.
Due to the number of findings, we have compiled a comprehensive report
detailing each issue, which is provided as an attachment to this email.
We hope this report is helpful.
Best regards,
Xiangpu Song
_______________________________________________
Dnsmasq-discuss mailing list
[email protected]
https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss
