Information on source package unbound

Available versions

ReleaseVersion
stretch1.6.0-3+deb9u2
buster1.9.0-2+deb10u2
bullseye1.11.0-1
sid1.12.0-1

Open issues

BugstretchbusterbullseyesidDescription
CVE-2020-12663vulnerablefixedfixedfixedUnbound before 1.10.1 has an infinite loop via malformed DNS answers r ...
CVE-2020-12662vulnerablefixedfixedfixedUnbound before 1.10.1 has Insufficient Control of Network Message Volu ...

Open unimportant issues

BugstretchbusterbullseyesidDescription
CVE-2019-18934fixedvulnerablevulnerablevulnerableUnbound 1.6.4 through 1.9.4 contain a vulnerability in the ipsec modul ...

Resolved issues

BugDescription
CVE-2020-10772
CVE-2019-16866Unbound before 1.9.4 accesses uninitialized memory, which allows remot ...
CVE-2017-15105A flaw was found in the way unbound before 1.6.8 validated wildcard-sy ...
CVE-2014-8602iterator.c in NLnet Labs Unbound before 1.5.1 does not limit delegatio ...
CVE-2011-4869validator/val_nsec3.c in Unbound before 1.4.13p2 does not properly per ...
CVE-2011-4528Unbound before 1.4.13p2 attempts to free unallocated memory during pro ...
CVE-2011-1922daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functiona ...
CVE-2010-0969Unbound before 1.4.3 does not properly align structures on 64-bit plat ...
CVE-2009-4008Unbound before 1.4.4 does not send responses for signed zones after mi ...
CVE-2009-3602Unbound before 1.3.4 does not properly verify signatures for NSEC3 rec ...

Security announcements

DSA / DLADescription
DSA-4694-1unbound - security update
DSA-4544-1unbound - security update
DLA-1676-1unbound - security update
DLA-1264-1unbound - security update
DLA-107-1unbound - security update
DSA-3097-1unbound - security update
DSA-2370-1unbound - several
DSA-2243-1unbound - design flaw
DSA-1963-1unbound - DNSSEC validation

Search for package or bug name: Reporting problems