Lucene search
K

2339 matches found

OSV
OSV
added 2026/06/08 12:0 a.m.7 views

ALSA-2026:24369 Important: unbound security update

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fixes: unbound: Heap overflow and crash with multiple nsid, cookie, padding EDNS options CVE-2026-42944 unbound: Unbound DNSSEC Validator Denial of Service via Incorrect Write Offset Counter in...

10CVSS5.6AI score0.01272EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.23 views

RHEL 8 : unbound (RHSA-2026:24365)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:24365 advisory. The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fixes: unbound: Heap overflow and crash...

8.7CVSS5.6AI score0.00842EPSS
Exploits0References6
Oracle linux
Oracle linux
added 2026/06/08 12:0 a.m.15 views

unbound security update

1.16.2-5.11 - Fix CVE-2026-42944 RHEL-177909 - Fix CVE-2026-42959 RHEL-177809...

8.7CVSS5.4AI score0.00842EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.12 views

Oracle Linux 8 : unbound (ELSA-2026-24365)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-24365 advisory. - Fix CVE-2026-42944 RHEL-177909 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

8.7CVSS5.6AI score0.00842EPSS
Exploits0References3
OSV
OSV
added 2026/06/08 12:0 a.m.7 views

ALSA-2026:24365 Important: unbound security update

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fixes: unbound: Heap overflow and crash with multiple nsid, cookie, padding EDNS options CVE-2026-42944 unbound: Unbound DNSSEC Validator Denial of Service via Incorrect Write Offset Counter in...

8.7CVSS5.4AI score0.00842EPSS
Exploits0References6
Rockylinux
Rockylinux
added 2026/06/06 12:4 p.m.12 views

unbound security update

An update is available for unbound. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The unbound packages provide a validating, recursive, and caching DNS or...

10CVSS5.7AI score0.01272EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/06 12:0 a.m.12 views

RHEL 10 : unbound (RHSA-2026:23231)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:23231 advisory. The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fixes: unbound: Heap overflow and crash...

10CVSS5.8AI score0.01272EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/06/06 12:0 a.m.10 views

RockyLinux 10 : unbound (RLSA-2026:23231)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:23231 advisory. unbound: Heap overflow and crash with multiple nsid, cookie, padding EDNS options CVE-2026-42944 unbound: Unbound DNSSEC Validator Denial of Service vi...

10CVSS5.8AI score0.01272EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2026/06/05 7:36 p.m.7 views

CVE-2026-41292

A flaw was found in Unbound. A remote attacker can exploit this vulnerability by sending queries with an excessive number of EDNS Extension Mechanisms for DNS options. This can cause Unbound threads to be held hostage while parsing and creating internal data structures for these options...

8.7CVSS5.8AI score0.00556EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/05 7:30 p.m.11 views

CVE-2026-42534

A flaw was found in Unbound. An adversary who can query a vulnerable Unbound instance and control a slow or malicious domain name server can exploit a vulnerability in the jostle logic. This flaw allows retransmitted queries to renew the age of slow-running queries, preventing them from being...

7.5CVSS5.8AI score0.00519EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/05 7:26 p.m.10 views

CVE-2026-40622

NLnet Labs Unbound 1.16.2 up to and including version 1.25.0 has a vulnerability of the 'ghost domain names' family of attacks that could extend the ghost domain window by up to one cached TTL configured value. Similar to other 'ghost domain names' attacks, an adversary needs to control a ghost...

8.7CVSS5.4AI score0.00171EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:25 p.m.13 views

CVE-2026-44390

A flaw was found in Unbound. A remote attacker can exploit this vulnerability by sending specially crafted DNS responses containing very large Resource Record Sets RRsets that require name compression. This can cause Unbound to spend a significant amount of time processing these responses, leadin...

7.5CVSS5.8AI score0.00556EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2026/06/05 12:12 p.m.10 views

Security update for unbound

This update for unbound fixes the following issues CVE-2026-32792: Packet of death with DNSCrypt bsc1265583. CVE-2026-33278: Possible remote code execution during DNSSEC validation bsc1265587. CVE-2026-40622: "Ghost domain name" variant bsc1265581. CVE-2026-41292: Parsing a long list of incoming...

8.6CVSS6.2AI score0.01272EPSS
Exploits0References44
OSV
OSV
added 2026/06/05 12:12 p.m.6 views

SUSE-SU-2026:2281-1 Security update for unbound

This update for unbound fixes the following issues - CVE-2026-32792: Packet of death with DNSCrypt bsc1265583. - CVE-2026-33278: Possible remote code execution during DNSSEC validation bsc1265587. - CVE-2026-40622: 'Ghost domain name' variant bsc1265581. - CVE-2026-41292: Parsing a long list of...

10CVSS6.2AI score0.01272EPSS
Exploits0References23
OSV
OSV
added 2026/06/05 6:55 a.m.6 views

ROOT-OS-DEBIAN-12-CVE-2026-41292 CVE-2026-41292 in rootio-unbound - Patched by Root

Root has patched CVE-2026-41292 in the rootio-unbound package for Root:Debian:12. Multiple fixed versions available...

7.5CVSS5.4AI score0.00556EPSS
Exploits0
OSV
OSV
added 2026/06/05 6:55 a.m.7 views

ROOT-OS-DEBIAN-12-CVE-2026-42944 CVE-2026-42944 in rootio-unbound - Patched by Root

Root has patched CVE-2026-42944 in the rootio-unbound package for Root:Debian:12. Multiple fixed versions available...

7.5CVSS5.4AI score0.00842EPSS
Exploits0
OSV
OSV
added 2026/06/05 6:55 a.m.6 views

ROOT-OS-DEBIAN-12-CVE-2026-42959 CVE-2026-42959 in rootio-unbound - Patched by Root

Root has patched CVE-2026-42959 in the rootio-unbound package for Root:Debian:12. Multiple fixed versions available...

7.5CVSS5.4AI score0.00779EPSS
Exploits0
OSV
OSV
added 2026/06/05 6:55 a.m.5 views

ROOT-OS-DEBIAN-12-CVE-2026-42960 CVE-2026-42960 in rootio-unbound - Patched by Root

Root has patched CVE-2026-42960 in the rootio-unbound package for Root:Debian:12. Multiple fixed versions available...

10CVSS5.4AI score0.00249EPSS
Exploits0
OSV
OSV
added 2026/06/05 6:55 a.m.7 views

ROOT-OS-DEBIAN-12-CVE-2026-33278 CVE-2026-33278 in rootio-unbound - Patched by Root

Root has patched CVE-2026-33278 in the rootio-unbound package for Root:Debian:12. Multiple fixed versions available...

9.8CVSS5.4AI score0.01272EPSS
Exploits0
OSV
OSV
added 2026/06/04 10:8 a.m.7 views

RHSA-2026:23231 Red Hat Security Advisory: unbound security update

Bulletin has no description...

8.1CVSS5.7AI score0.01272EPSS
Exploits0References15
Rows per page
Query Builder