Filter

debian/unboundUnbounded name compression could lead to Denial of Service

EPSS
0.04%
First published (updated )

Fedoraproject FedoraDenial of service when trimming EDE text on positive replies

7.5
First published (updated )

Microsoft Windows Server 2012Unbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities

7.5
First published (updated )

Fedoraproject FedoraNRDelegation Attack

7.5
First published (updated )

Fedoraproject FedoraNovel "ghost domain names" attack by updating almost expired delegation information

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Fedoraproject FedoraNovel "ghost domain names" attack by introducing subdomain delegations

First published (updated )

Nlnetlabs UnboundUnbound before 1.9.5 allows configuration injection in create_unbound_ad_servers.sh upon a successfu…

First published (updated )

Nlnetlabs UnboundInteger Overflow

First published (updated )

Nlnetlabs UnboundInteger Overflow

First published (updated )

Nlnetlabs UnboundInteger Overflow

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Nlnetlabs UnboundUnbound before 1.9.5 allows an out-of-bounds write in sldns_bget_token_par. NOTE: The vendor dispute…

First published (updated )

Nlnetlabs UnboundUnbound before 1.9.5 allows an assertion failure and denial of service in synth_cname. NOTE: The ven…

7.5
First published (updated )

Nlnetlabs UnboundUnbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an inva…

7.5
First published (updated )

Nlnetlabs UnboundInteger Overflow

First published (updated )

Nlnetlabs UnboundInteger Overflow

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Nlnetlabs UnboundUnbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy. NOTE: The vend…

7.5
First published (updated )

Nlnetlabs UnboundUnbound before 1.9.5 allows an assertion failure via a compressed name in dname_pkt_copy. NOTE: The …

7.5
First published (updated )

Nlnetlabs UnboundUnbound before 1.9.5 allows an out-of-bounds write via a compressed name in rdata_copy. NOTE: The ve…

First published (updated )

Nlnetlabs Name Server DaemonLocal symlink attack in Unbound and NSD

First published (updated )

Nlnetlabs UnboundAn incomplete fix for CVE-2020-12662 was shipped for Unbound in Red Hat Enterprise Linux 7, as part …

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

ubuntu/unboundUnbound before 1.10.1 has Insufficient Control of Network Message Volume, aka an "NXNSAttack" issue.…

7.5
First published (updated )

ubuntu/unboundUnbound before 1.10.1 has an infinite loop via malformed DNS answers received from upstream servers.

7.5
First published (updated )

openSUSE LeapOS Command Injection

7.3
First published (updated )

debian/unboundUnbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a crash…

7.5
First published (updated )

Canonical Ubuntu LinuxInput Validation

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Canonical Ubuntu Linuxiterator.c in NLnet Labs Unbound before 1.5.1 does not limit delegation chaining, which allows remot…

First published (updated )

Nlnetlabs UnboundUnbound before 1.4.4 does not send responses for signed zones after mishandling an unspecified query…

First published (updated )

Nlnetlabs Unbounddaemon/worker.c in Unbound 1.x before 1.4.10, when debugging functionality and the interface-automat…

First published (updated )

Nlnetlabs UnboundUnbound before 1.4.3 does not properly align structures on 64-bit platforms, which allows remote att…

First published (updated )

Nlnetlabs UnboundUnbound before 1.3.4 does not properly verify signatures for NSEC3 records, which allows remote atta…

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203