CVE-2026-42960

creationtimestamp| type| source ---|---|--- 2026-05-20 10:36:25+00:00| seen| https://social.nlnetlabs.nl/users/nlnetlabs/statuses/116606458492280712 2026-05-20 10:58:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmbqqjqwms2i...

[SECURITY] Fedora 42 Update: unbound-1.24.2-1.fc42

Unbound is a validating, recursive, and caching DNSSEC resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modula...

[SECURITY] Fedora 43 Update: unbound-1.24.1-1.fc43

Unbound is a validating, recursive, and caching DNSSEC resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modula...

NLnet Labs Unbound 安全漏洞

NLnet Labs Unbound is a high-performance DNS resolver open-sourced by NLnet Labs. A security vulnerability exists in NLnet Labs Unbound version 1.24.0 and earlier, which stems from an uncleaned set of unsolicited NS records and could lead to a domain hijacking attack...

EUVD-2020-9320

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2023-39914

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NLnet Labs' bcder library up to and including version 0.7.2 panics while decoding certain invalid input data rather than rejecting the data with an error. This...

Amazon Linux 2 : unbound (ALASUNBOUND-1.17-2024-003)

The version of unbound installed on the remote host is prior to 1.17.0-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2UNBOUND-1.17-2024-003 advisory. NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling replies with very large...

Amazon Linux 2023 : python3-unbound, unbound, unbound-anchor (ALAS2023-2024-719)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-719 advisory. NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling replies with very large RRsets that it needs to perform name compression for. Malicious upstreams responses...

CBL Mariner 2.0 Security Update: unbound (CVE-2024-8508)

The version of unbound installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-8508 advisory. - NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling replies with ve...

FreeBSD : Unbound -- Denial of service attack (2368755b-83f6-11ef-8d2e-a04a5edf46d9)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 2368755b-83f6-11ef-8d2e-a04a5edf46d9 advisory. NLnet labs report: A vulnerability has been discovered in Unbound when handling replies with very large...

[SECURITY] Fedora 40 Update: unbound-1.21.1-3.fc40

Unbound is a validating, recursive, and caching DNSSEC resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modula...

NLnet Labs Unbound Security Vulnerability

NLnet Labs Unbound is an open source DNS server from the Dutch NLnet Labs team. A security vulnerability exists in NLnet Labs Unbound that originates from allowing a remote attacker to cause a denial of service resource consumption by scheduling DNS query accumulation...

Fedora: Security Advisory for unbound (FEDORA-2024-5bfa220621)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 39 Update: unbound-1.19.3-1.fc39

Unbound is a validating, recursive, and caching DNSSEC resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modula...

[SECURITY] Fedora 38 Update: unbound-1.19.3-1.fc38

Unbound is a validating, recursive, and caching DNSSEC resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modula...

[SECURITY] Fedora 40 Update: unbound-1.19.3-1.fc40

Unbound is a validating, recursive, and caching DNSSEC resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modula...

FreeBSD : Unbound -- Denial-of-Service vulnerability (c2ad8700-de25-11ee-9190-84a93843eb75)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the c2ad8700-de25-11ee-9190-84a93843eb75 advisory. - NLnet Labs Unbound version 1.18.0 up to and including version 1.19.1 contain a vulnerability that can...

CVE-2024-1931

NLnet Labs Unbound version 1.18.0 up to and including version 1.19.1 contain a vulnerability that can cause denial of service by a certain code path that can lead to an infinite loop. Unbound 1.18.0 introduced a feature that removes EDE records from responses with size higher than the client's...

Design/Logic Flaw

NLnet Labs Unbound version 1.18.0 up to and including version 1.19.1 contain a vulnerability that can cause denial of service by a certain code path that can lead to an infinite loop. Unbound 1.18.0 introduced a feature that removes EDE records from responses with size higher than the client's...

CVE-2024-1931

CVE-2024-1931 affects NLnet Labs Unbound 1.18.0 through 1.19.1. The issue is an infinite loop in a code path that trims EDE record text when the client buffer is smaller than needed, triggered when ede: yes is configured. From 1.19.2 a fix was applied; Fedora/RH advisories show 1.19.3 includes th...