|
|
Log in / Subscribe / Register

unbound: denial of service

Package(s):unbound CVE #(s):CVE-2011-4528 CVE-2011-4869
Created:December 23, 2011 Updated:December 1, 2013
Description: From the Debian advisory:

It was discovered that Unbound, a recursive DNS resolver, would crash when processing certain malformed DNS responses from authoritative DNS servers, leading to denial of service.

CVE-2011-4528: Unbound attempts to free unallocated memory during processing of duplicate CNAME records in a signed zone. CVE-2011-4869: Unbound does not properly process malformed responses which lack expected NSEC3 records.

Alerts:
Gentoo 201311-18 unbound 2013-11-28
Fedora FEDORA-2011-17337 unbound 2011-12-22
Fedora FEDORA-2011-17282 unbound 2011-12-22
Debian DSA-2370-1 unbound 2011-12-22
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds