| Bug | buster | bullseye | bookworm | trixie | sid | Description |
|---|
| CVE-2019-25042 | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an out-of-bounds write via a compressed na ... |
| CVE-2019-25041 | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an assertion failure via a compressed name ... |
| CVE-2019-25040 | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an infinite loop via a compressed name in ... |
| CVE-2019-25039 | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an integer overflow in a size calculation ... |
| CVE-2019-25038 | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an integer overflow in a size calculation ... |
| CVE-2019-25037 | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an assertion failure and denial of service ... |
| CVE-2019-25036 | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an assertion failure and denial of service ... |
| CVE-2019-25035 | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an out-of-bounds write in sldns_bget_token ... |
| CVE-2019-25034 | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an integer overflow in sldns_str2wire_dnam ... |
| CVE-2019-25033 | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an integer overflow in the regional alloca ... |
| CVE-2019-25032 | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an integer overflow in the regional alloca ... |
| CVE-2019-25031 | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows configuration injection in create_unbound_ ... |
| CVE-2019-18934 | vulnerable | fixed | fixed | fixed | fixed | Unbound 1.6.4 through 1.9.4 contain a vulnerability in the ipsec modul ... |
| Bug | Description |
|---|
| CVE-2024-1488 | A vulnerability was found in Unbound due to incorrect default permissi ... |
| CVE-2023-50868 | The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 whe ... |
| CVE-2023-50387 | Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6 ... |
| CVE-2022-30699 | NLnet Labs Unbound, up to and including version 1.16.1, is vulnerable ... |
| CVE-2022-30698 | NLnet Labs Unbound, up to and including version 1.16.1 is vulnerable t ... |
| CVE-2022-3204 | A vulnerability named 'Non-Responsive Delegation Attack' (NRDelegation ... |
| CVE-2020-28935 | NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs ... |
| CVE-2020-12663 | Unbound before 1.10.1 has an infinite loop via malformed DNS answers r ... |
| CVE-2020-12662 | Unbound before 1.10.1 has Insufficient Control of Network Message Volu ... |
| CVE-2020-10772 | An incomplete fix for CVE-2020-12662 was shipped for Unbound in Red Ha ... |
| CVE-2019-16866 | Unbound before 1.9.4 accesses uninitialized memory, which allows remot ... |
| CVE-2017-15105 | A flaw was found in the way unbound before 1.6.8 validated wildcard-sy ... |
| CVE-2014-8602 | iterator.c in NLnet Labs Unbound before 1.5.1 does not limit delegatio ... |
| CVE-2011-4869 | validator/val_nsec3.c in Unbound before 1.4.13p2 does not properly per ... |
| CVE-2011-4528 | Unbound before 1.4.13p2 attempts to free unallocated memory during pro ... |
| CVE-2011-1922 | daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functiona ... |
| CVE-2010-0969 | Unbound before 1.4.3 does not properly align structures on 64-bit plat ... |
| CVE-2009-4008 | Unbound before 1.4.4 does not send responses for signed zones after mi ... |
| CVE-2009-3602 | Unbound before 1.3.4 does not properly verify signatures for NSEC3 rec ... |