Lucene search
K

16 matches found

Rosalinux
Rosalinux
added 2023/05/15 7:50 a.m.40 views

Advisory ROSA-SA-2023-2164

Software: unbound 1.16.2 OS: ROSA Virtualization 2.1 packageevrstring: unbound-1.16.2-2.rv3.src.rpm CVE-ID: CVE-2019-25038 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC: Unbound before version 1.9.5 allows integer overflow on size calculation in dnscrypt/dnscrypt.c. CVE-STATUS: Fixed CVE-REV: Run the...

9.8CVSS7.3AI score0.02037EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/01/31 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2023-1299)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.02179EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/02/16 12:0 a.m.53 views

SUSE SLES15 Security Update : unbound (SUSE-SU-2022:0176-2)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0176-2 advisory. - CVE-2019-25031: Fixed configuration injection in createunboundadservers.sh upon a successful man-in- the-middle attack bsc1185382. -...

9.8CVSS6.9AI score0.02179EPSS
Exploits0References43
OpenVAS
OpenVAS
added 2022/02/13 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2022-1100)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.02179EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/02/03 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2022:0301-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.02179EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2022/01/26 12:0 a.m.37 views

SUSE SLED15 / SLES15 Security Update : unbound (SUSE-SU-2022:0176-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0176-1 advisory. - CVE-2019-25031: Fixed configuration injection in createunboundadservers.sh upon a successful man-in-...

9.8CVSS6.9AI score0.02179EPSS
Exploits0References43
Tenable Nessus
Tenable Nessus
added 2022/01/26 12:0 a.m.42 views

openSUSE 15 Security Update : unbound (openSUSE-SU-2022:0176-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0176-1 advisory. - DISPUTED Unbound before 1.9.5 allows configuration injection in createunboundadservers.sh upon a successful man-in-the-middle attack...

9.8CVSS7.3AI score0.02179EPSS
Exploits0References43
OpenVAS
OpenVAS
added 2021/09/04 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2021-2351)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.02179EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/07/13 12:0 a.m.53 views

EulerOS Virtualization 2.9.1 : unbound (EulerOS-SA-2021-2175)

According to the versions of the unbound packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - DISPUTED Unbound before 1.9.5 allows an out-of-bounds write via a compressed name in rdatacopy. NOTE: The vendor disputes that...

9.8CVSS7.5AI score0.02128EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2021/07/13 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2021-2175)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.02128EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/07/07 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2021-2124)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.02179EPSS
Exploits0References2
Cloud Foundry
Cloud Foundry
added 2021/06/11 12:0 a.m.42 views

USN-4938-1: Unbound vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that Unbound contained multiple security issues. A remote attacker could possibly use these issues to cause a denial of service, inject arbitrary commands, execute arbitrary code, and...

9.8CVSS8.5AI score0.02179EPSS
Exploits0Affected Software2
Tenable Nessus
Tenable Nessus
added 2021/05/26 12:0 a.m.62 views

Oracle Linux 8 : unbound (ELSA-2021-1853)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-1853 advisory. 1.7.3-15 - Fix SPEC file to not check md5 mtime and size of /var/lib/unbound/root.key - Resolves: rhbz1714175 - Use system-wide crypto policy setting...

9.8CVSS7.3AI score0.02179EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.59 views

RHEL 8 : unbound (RHSA-2021:1853)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1853 advisory. The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fixes: unbound: integer overflow in the...

9.8CVSS7.4AI score0.02179EPSS
Exploits0References29
OSV
OSV
added 2021/04/27 6:15 a.m.17 views

CVE-2019-25038

Unbound before 1.9.5 allows an integer overflow in a size calculation in dnscrypt/dnscrypt.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited...

9.8CVSS9.6AI score
Exploits0References3
CVE
CVE
added 2021/04/27 5:17 a.m.249 views

CVE-2019-25038

Unbound prior to 1.9.5 contains an integer overflow in a size calculation in dnscrypt/dnscrypt.c (CVE-2019-25038). The issue is described across multiple sources as potentially vulnerable code, but vendor disputes that it is exploitable in running installations. Affected versions are those before...

9.8CVSS9.4AI score0.02037EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder