Lucene search
K

5 matches found

RedHat Linux
RedHat Linux
added 2026/06/08 10:49 a.m.11 views

unbound: Heap overflow and crash with multiple nsid, cookie, padding EDNS options

A flaw was found in Unbound, a Domain Name System DNS resolver. A remote attacker could trigger a heap overflow by sending specially crafted DNS reply packets. This occurs when Unbound attempts to encode multiple Name Server Identifier NSID or Extension Mechanisms for DNS EDNS Cookie options, or...

8.7CVSS5.5AI score0.00842EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/08 8:53 a.m.10 views

unbound: Heap overflow and crash with multiple nsid, cookie, padding EDNS options

A flaw was found in Unbound, a Domain Name System DNS resolver. A remote attacker could trigger a heap overflow by sending specially crafted DNS reply packets. This occurs when Unbound attempts to encode multiple Name Server Identifier NSID or Extension Mechanisms for DNS EDNS Cookie options, or...

8.7CVSS5.5AI score0.00842EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/04 8:54 a.m.11 views

unbound: Heap overflow and crash with multiple nsid, cookie, padding EDNS options

A flaw was found in Unbound, a Domain Name System DNS resolver. A remote attacker could trigger a heap overflow by sending specially crafted DNS reply packets. This occurs when Unbound attempts to encode multiple Name Server Identifier NSID or Extension Mechanisms for DNS EDNS Cookie options, or...

8.7CVSS5.8AI score0.00842EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/20 9:20 a.m.6 views

CVE-2026-42944 Heap overflow with multiple NSID, COOKIE, PADDING EDNS options

NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a vulnerability that results in heap overflow when encoding multiple NSID and/or DNS Cookie EDNS and/or EDNS Padding options in the reply packet. The relevant options 'nsid', 'answer-cookie', 'pad-responses' default need to be enabl...

8.7CVSS5.8AI score0.00842EPSS
Exploits0References1
OSV
OSV
added 2026/05/20 12:0 a.m.8 views

UBUNTU-CVE-2026-42944

NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a vulnerability that results in heap overflow when encoding multiple NSID and/or DNS Cookie EDNS and/or EDNS Padding options in the reply packet. The relevant options 'nsid', 'answer-cookie', 'pad-responses' default need to be enabl...

8.7CVSS5.8AI score0.00842EPSS
Exploits0References4
Rows per page
Query Builder