Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-8602HistoryDec 11, 2014 - 2:59 a.m.
CVE-2014-8602
2014-12-1102:59:00
Debian Security Bug Tracker
security-tracker.debian.org
8
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.651 Medium
EPSS
Percentile
97.9%
iterator.c in NLnet Labs Unbound before 1.5.1 does not limit delegation chaining, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a large or infinite number of referrals.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | unbound | < 1.4.22-3 | unbound_1.4.22-3_all.deb |
| Debian | 11 | all | unbound | < 1.4.22-3 | unbound_1.4.22-3_all.deb |
| Debian | 10 | all | unbound | < 1.4.22-3 | unbound_1.4.22-3_all.deb |
| Debian | 999 | all | unbound | < 1.4.22-3 | unbound_1.4.22-3_all.deb |
| Debian | 13 | all | unbound | < 1.4.22-3 | unbound_1.4.22-3_all.deb |
Related
securityvulns
securityvulns
[SECURITY] [DSA 3097-1] unbound security update
2014-12-11 00:00:00
unbound DoS
2014-12-11 00:00:00
prion
prion
Design/Logic Flaw
2014-12-11 02:59:00
f5
f5
K15931 : Unbound vulnerability CVE-2014-8602
2015-06-04 00:00:00
SOL15931 - Unbound vulnerability CVE-2014-8602
2014-12-23 00:00:00
freebsd
freebsd
openvas
openvas
Debian: Security Advisory (DLA-107-1)
2023-03-08 00:00:00
Debian: Security Advisory (DSA-3097-1)
2014-12-09 00:00:00
Ubuntu: Security Advisory (USN-2484-1)
2015-01-27 00:00:00
nessus
nessus
Scientific Linux Security Update : unbound on SL7.x x86_64 (20151119)
2015-12-22 00:00:00
Debian DSA-3097-1 : unbound - security update
2014-12-15 00:00:00
Debian DLA-107-1 : unbound security update
2015-03-26 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: unbound-1.5.1-2.fc20
2014-12-20 08:46:37
[SECURITY] Fedora 21 Update: unbound-1.5.1-2.fc21
2014-12-20 08:36:48
osv
osv
unbound - security update
2014-12-12 00:00:00
debian
debian
[SECURITY] [DLA 107-1] unbound security update
2014-12-12 21:49:39
[SECURITY] [DSA 3097-1] unbound security update
2014-12-10 21:35:45
ubuntucve
ubuntucve
CVE-2014-8602
2014-12-10 00:00:00
ubuntu
ubuntu
Unbound vulnerability
2015-01-26 00:00:00
redhat
redhat
(RHSA-2015:2455) Low: unbound security and bug fix update
2015-11-19 13:49:59
oraclelinux
oraclelinux
unbound security and bug fix update
2015-11-23 00:00:00
archlinux
archlinux
unbound: denial of service
2014-12-09 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-14:30.unbound
2014-12-17 00:00:00
cve
cve
CVE-2014-8602
2014-12-11 02:59:00
centos
centos
unbound security update
2015-11-30 19:54:37
cert
cert
Recursive DNS resolver implementations may follow referrals infinitely
2014-12-09 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.651 Medium
EPSS
Percentile
97.9%
Related for DEBIANCVE:CVE-2014-8602