Lucene search
K

99 matches found

OSV
OSV
added 2026/06/18 2:32 p.m.2 views

SUSE-SU-2026:22213-1 Security update for unbound

This update for unbound fixes the following issues - CVE-2026-32792: Packet of death with DNSCrypt bsc1265583. - CVE-2026-33278: Possible remote code execution during DNSSEC validation bsc1265587. - CVE-2026-40622: "Ghost domain name" variant bsc1265581. - CVE-2026-41292: Parsing a long list of...

10CVSS6.5AI score0.01272EPSS
Exploits0References23
OSV
OSV
added 2026/06/18 2:32 p.m.3 views

SUSE-SU-2026:22160-1 Security update for unbound

This update for unbound fixes the following issues - CVE-2026-32792: Packet of death with DNSCrypt bsc1265583. - CVE-2026-33278: Possible remote code execution during DNSSEC validation bsc1265587. - CVE-2026-40622: "Ghost domain name" variant bsc1265581. - CVE-2026-41292: Parsing a long list of...

10CVSS6.5AI score0.01272EPSS
Exploits0References23
Tenable Nessus
Tenable Nessus
added 2026/06/14 12:0 a.m.8 views

SUSE SLES15 Security Update : unbound (SUSE-SU-2026:2369-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2369-1 advisory. This update for unbound fixes the following issues - CVE-2026-32792: Packet of death with DNSCrypt bsc1265583. - CVE-2026-33278:...

10CVSS6.7AI score0.01272EPSS
Exploits0References34
SUSE Linux
SUSE Linux
added 2026/06/11 12:22 p.m.6 views

Security update for unbound

This update for unbound fixes the following issues CVE-2026-32792: Packet of death with DNSCrypt bsc1265583. CVE-2026-33278: Possible remote code execution during DNSSEC validation bsc1265587. CVE-2026-40622: "Ghost domain name" variant bsc1265581. CVE-2026-41292: Parsing a long list of incoming...

8.6CVSS6.2AI score0.01272EPSS
Exploits0References44
OSV
OSV
added 2026/06/11 12:22 p.m.4 views

SUSE-SU-2026:2369-1 Security update for unbound

This update for unbound fixes the following issues - CVE-2026-32792: Packet of death with DNSCrypt bsc1265583. - CVE-2026-33278: Possible remote code execution during DNSSEC validation bsc1265587. - CVE-2026-40622: 'Ghost domain name' variant bsc1265581. - CVE-2026-41292: Parsing a long list of...

10CVSS6.2AI score0.01272EPSS
Exploits0References23
RedhatCVE
RedhatCVE
added 2026/06/05 7:25 p.m.12 views

CVE-2026-44390

A flaw was found in Unbound. A remote attacker can exploit this vulnerability by sending specially crafted DNS responses containing very large Resource Record Sets RRsets that require name compression. This can cause Unbound to spend a significant amount of time processing these responses, leadin...

7.5CVSS5.8AI score0.00556EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2026/06/05 12:12 p.m.8 views

Security update for unbound

This update for unbound fixes the following issues CVE-2026-32792: Packet of death with DNSCrypt bsc1265583. CVE-2026-33278: Possible remote code execution during DNSSEC validation bsc1265587. CVE-2026-40622: "Ghost domain name" variant bsc1265581. CVE-2026-41292: Parsing a long list of incoming...

8.6CVSS6.2AI score0.01272EPSS
Exploits0References44
OSV
OSV
added 2026/06/05 12:12 p.m.5 views

SUSE-SU-2026:2281-1 Security update for unbound

This update for unbound fixes the following issues - CVE-2026-32792: Packet of death with DNSCrypt bsc1265583. - CVE-2026-33278: Possible remote code execution during DNSSEC validation bsc1265587. - CVE-2026-40622: 'Ghost domain name' variant bsc1265581. - CVE-2026-41292: Parsing a long list of...

10CVSS6.2AI score0.01272EPSS
Exploits0References23
SUSE CVE
SUSE CVE
added 2026/05/30 2:5 a.m.12 views

SUSE CVE-2026-44390

NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability when handling replies with very large RRsets that Unbound needs to perform name compression for. Malicious upstream responses with very large RRsets with records that don't share a suffix above the root can cause Unbound to...

5.9CVSS5.8AI score0.00556EPSS
Exploits0References9
OSV
OSV
added 2026/05/28 3:44 p.m.7 views

SUSE-SU-2026:21913-1 Security update for unbound

This update for unbound fixes the following issues - CVE-2026-32792: Packet of death with DNSCrypt bsc1265583. - CVE-2026-33278: Possible remote code execution during DNSSEC validation bsc1265587. - CVE-2026-40622: "Ghost domain name" variant bsc1265581. - CVE-2026-41292: Parsing a long list of...

10CVSS6.5AI score0.01272EPSS
Exploits0References23
Microsoft CVE
Microsoft CVE
added 2026/05/21 8:3 a.m.15 views

Unbounded name compression in certain cases causes degradation of service

...

7.5CVSS5.8AI score0.00556EPSS
Exploits0
OSV
OSV
added 2026/05/20 10:16 a.m.5 views

ALPINE-CVE-2026-44390

NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability when handling replies with very large RRsets that Unbound needs to perform name compression for. Malicious upstream responses with very large RRsets with records that don't share a suffix above the root can cause Unbound to...

5.3CVSS5.5AI score0.00556EPSS
Exploits0References1
NVD
NVD
added 2026/05/20 10:16 a.m.13 views

CVE-2026-44390

NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability when handling replies with very large RRsets that Unbound needs to perform name compression for. Malicious upstream responses with very large RRsets with records that don't share a suffix above the root can cause Unbound to...

7.5CVSS0.00556EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/20 9:21 a.m.49 views

CVE-2026-44390 Unbounded name compression in certain cases causes degradation of service

NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability when handling replies with very large RRsets that Unbound needs to perform name compression for. Malicious upstream responses with very large RRsets with records that don't share a suffix above the root can cause Unbound to...

6.9CVSS0.00556EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/05/20 9:21 a.m.9 views

CVE-2026-44390

NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability when handling replies with very large RRsets that Unbound needs to perform name compression for. Malicious upstream responses with very large RRsets with records that don't share a suffix above the root can cause Unbound to...

7.5CVSS5.8AI score0.00556EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/05/20 9:21 a.m.7 views

CVE-2026-44390 Unbounded name compression in certain cases causes degradation of service

NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability when handling replies with very large RRsets that Unbound needs to perform name compression for. Malicious upstream responses with very large RRsets with records that don't share a suffix above the root can cause Unbound to...

6.9CVSS5.8AI score0.00556EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/20 9:21 a.m.10 views

EUVD-2026-31088

NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability when handling replies with very large RRsets that Unbound needs to perform name compression for. Malicious upstream responses with very large RRsets with records that don't share a suffix above the root can cause Unbound to...

6.9CVSS5.8AI score0.00556EPSS
Exploits0References1
CVE
CVE
added 2026/05/20 9:21 a.m.27 views

CVE-2026-44390

CVE-2026-44390 affects NLnet Labs Unbound up to and including 1.25.0. The issue arises when handling replies with very large RRsets that require name compression; malicious upstream responses with such RRsets can cause Unbound to spend excessive CPU time on compression, potentially leading to deg...

7.5CVSS5.8AI score0.00556EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/20 9:21 a.m.8 views

CVE-2026-44390

NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability when handling replies with very large RRsets that Unbound needs to perform name compression for. Malicious upstream responses with very large RRsets with records that don't share a suffix above the root can cause Unbound to...

6.9CVSS6.8AI score0.00806EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/05/20 9:21 a.m.11 views

CVE-2026-44390

NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability when handling replies with very large RRsets that Unbound needs to perform name compression for. Malicious upstream responses with very large RRsets with records that don't share a suffix above the root can cause Unbound to...

7.5CVSS5.8AI score0.00806EPSS
Exploits0References4
Rows per page
Query Builder