Lucene search
+L

15 matches found

Rosalinux
Rosalinux
added 2023/05/15 7:50 a.m.40 views

Advisory ROSA-SA-2023-2164

Software: unbound 1.16.2 OS: ROSA Virtualization 2.1 packageevrstring: unbound-1.16.2-2.rv3.src.rpm CVE-ID: CVE-2019-25038 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC: Unbound before version 1.9.5 allows integer overflow on size calculation in dnscrypt/dnscrypt.c. CVE-STATUS: Fixed CVE-REV: Run the...

9.8CVSS7.3AI score0.02037EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/01/31 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2023-1299)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.02179EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/02/13 12:0 a.m.35 views

Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2022-1100)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.02179EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/02/03 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2022:0301-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.02179EPSS
Exploits0References19
OpenVAS
OpenVAS
added 2021/09/04 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2021-2351)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.02179EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/07/13 12:0 a.m.54 views

EulerOS Virtualization 2.9.1 : unbound (EulerOS-SA-2021-2175)

According to the versions of the unbound packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - DISPUTED Unbound before 1.9.5 allows an out-of-bounds write via a compressed name in rdatacopy. NOTE: The vendor disputes that...

9.8CVSS7.5AI score0.02128EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2021/07/13 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2021-2175)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.02128EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/07/07 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2021-2124)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.02179EPSS
Exploits0References2
Cloud Foundry
Cloud Foundry
added 2021/06/11 12:0 a.m.50 views

USN-4938-1: Unbound vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that Unbound contained multiple security issues. A remote attacker could possibly use these issues to cause a denial of service, inject arbitrary commands, execute arbitrary code, and...

9.8CVSS8.5AI score0.02179EPSS
Exploits0Affected Software2
Tenable Nessus
Tenable Nessus
added 2021/05/26 12:0 a.m.63 views

Oracle Linux 8 : unbound (ELSA-2021-1853)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-1853 advisory. 1.7.3-15 - Fix SPEC file to not check md5 mtime and size of /var/lib/unbound/root.key - Resolves: rhbz1714175 - Use system-wide crypto policy setting...

9.8CVSS7.3AI score0.02179EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2021/05/21 12:0 a.m.53 views

Photon OS 3.0: Unbound PHSA-2021-3.0-0236

An update of the unbound package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-3.0-0236. The text itself is copyright C VMware, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

9.8CVSS8.1AI score0.02179EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.59 views

RHEL 8 : unbound (RHSA-2021:1853)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1853 advisory. The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fixes: unbound: integer overflow in the...

9.8CVSS7.4AI score0.02179EPSS
Exploits0References29
RedhatCVE
RedhatCVE
added 2021/04/28 7:48 p.m.43 views

CVE-2019-25042

A flaw was found in unbound. An out-of-bounds write in the rdatacopy function may be abused by a remote attacker. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability...

9.8CVSS8.8AI score0.02037EPSS
Exploits0References3
OSV
OSV
added 2021/04/27 6:15 a.m.18 views

CVE-2019-25042

Unbound before 1.9.5 allows an out-of-bounds write via a compressed name in rdatacopy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited...

9.8CVSS9.4AI score
Exploits0References3
CVE
CVE
added 2021/04/27 5:16 a.m.297 views

CVE-2019-25042

CVE-2019-25042 concerns Unbound, where an out-of-bounds write can occur in the rdata_copy path when handling compressed names. The descriptor consistently cites Unbound versions before 1.9.5 as affected, with the root cause listed as an out-of-bounds write via compressed names. The vendor dispute...

9.8CVSS9.3AI score0.02037EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder