dnsmasq:
2016-06-28

A Denial of Service was discovered in dnsmasq when an A or AAAA record is defined locally in a hosts file, and an upstream server sends a reply that the same name is empty.

CVE-2015-8899
dnsmasq-2.75p1.tgz