31 matches found
RHEL 9 : unbound (RHSA-2026:24369)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:24369 advisory. The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fixes: unbound: Heap overflow and crash...
unbound security update
An update is available for unbound. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The unbound packages provide a validating, recursive, and caching DNS or...
[SECURITY] [DSA 6071-1] unbound security update
------------------------------------------------------------------------- Debian Security Advisory DSA-6071-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 04, 2025 https://www.debian.org/security/faq -...
Unbound DNS Resolver < 1.24.2 Domain Hijacking Vulnerabilities
Unbound DNS Resolver is prone to a domain hijacking vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Unbound DNS Resolver 1.6.2 - 1.23.0 Cache Poisoning Vulnerability (Rebirthday Attack)
Unbound DNS Resolver is prone to a cache poisoning vulnerability Rebirthday Attack. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Important: Red Hat Security Advisory: unbound security update
An update for unbound is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security...
Unbound DNS Resolver < 1.19.1-2.fc40 Access Control Vulnerability
Unbound DNS Resolver is prone to an access control vulnerability. This VT was deprecated as it has been determined that this is not a software flaw in the product itself but an issue in Red Hat RHEL and derivates e.g. Fedora specific packaging of the product and for which various more reliable...
Unbound DNS Resolver 1.18.0 - 1.19.1 DoS Vulnerability
Unbound DNS Resolver is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Unbound DNS Resolver < 1.19.1 Multiple DoS Vulnerabilities (KeyTrap)
Unbound DNS Resolver is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Moderate: Red Hat Security Advisory: unbound security update
An update for unbound is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
Unbound: Multiple Vulnerabilities
Background Unbound is a validating, recursive, and caching DNS resolver. Description Multiple vulnerabilities have been discovered in Unbound. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no...
RLSA-2022:8062 Moderate: unbound security, bug fix, and enhancement update
The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. The following packages have been upgraded to a later upstream version: unbound 1.16.2. BZ2087120 Security Fixes: unbound: novel ghost domain attack that allows attackers to trigger continued resolvability of...
Unbound DNS Resolver < 1.16.3 DoS Vulnerability
Unbound DNS Resolver is prone to a denial of service DoS vulnerability due to a SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
[SECURITY] Fedora 35 Update: unbound-1.16.2-3.fc35
Unbound is a validating, recursive, and caching DNSSEC resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modula...
Unbound integer overflow vulnerability (CNVD-2021-32626)
Unbound is a DNS resolver that supports validation, recursion, and caching features. An integer overflow vulnerability exists in the size calculation in dnscrypt/dnscrypt.c in versions of Unbound prior to 1.9.5. No detailed vulnerability details are provided at this time...
Unbound Out-of-Bounds Write Vulnerability
Unbound is a DNS resolver that supports validation, recursion, and caching features. An out-of-bounds write vulnerability exists in rdatacopy in versions of Unbound prior to 1.9.5. An attacker can exploit this vulnerability by compressing names to cause an out-of-bounds write...
Unbound Integer Overflow Vulnerability
Unbound is a DNS resolver that supports validation, recursion, and caching features. An integer overflow vulnerability exists in the size calculation in respip/respip.c in versions of Unbound prior to 1.9.5. No detailed vulnerability details are provided at this time...
Unbound Infinite Loop Vulnerability
Unbound is a DNS resolver that supports validation, recursion, and caching features. An infinite loop vulnerability exists in dnamepktcopy in Unbound versions prior to 1.9.5. An attacker can exploit this vulnerability by compressing names to cause an infinite loop...
Unbound Assertion Failure Vulnerability (CNVD-2021-32627)
Unbound is a DNS resolver that supports validation, recursion, and caching features. An assertion failure vulnerability exists in dnamepktcopy in versions of Unbound prior to 1.9.5. An attacker can exploit this vulnerability via invalid packets to cause a denial of service...
Unbound Configuration Injection Vulnerability
Unbound is a DNS resolver that supports validation, recursion, and caching features. A configuration injection vulnerability exists in createunboundadservers.sh in versions of Unbound prior to 1.9.5. A man-in-the-middle attacker can exploit this vulnerability to inject configuration via a plainte...