Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
---|
CVE-2024-43168 | vulnerable | vulnerable | vulnerable | fixed | vulnerable | fixed | fixed | DISPUTE NOTE: this issue does not pose a security risk as it (accordin ... |
CVE-2024-43167 | vulnerable | vulnerable | vulnerable | fixed | vulnerable | fixed | fixed | DISPUTE NOTE: this issue does not pose a security risk as it (accordin ... |
CVE-2024-33655 | vulnerable | vulnerable | vulnerable (no DSA, ignored) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | The DNS protocol in RFC 1035 and updates allows remote attackers to ca ... |
CVE-2024-8508 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable (no DSA) | fixed | fixed | NLnet Labs Unbound up to and including version 1.21.0 contains a vulne ... |
CVE-2024-1931 | vulnerable | vulnerable | fixed | fixed | fixed | fixed | fixed | NLnet Labs Unbound version 1.18.0 up to and including version 1.19.1 c ... |
CVE-2023-50868 | vulnerable | vulnerable | fixed | fixed | fixed | fixed | fixed | The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 whe ... |
CVE-2023-50387 | vulnerable | vulnerable | fixed | fixed | fixed | fixed | fixed | Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6 ... |
CVE-2022-30699 | vulnerable | vulnerable | fixed | fixed | fixed | fixed | fixed | NLnet Labs Unbound, up to and including version 1.16.1, is vulnerable ... |
CVE-2022-30698 | vulnerable | vulnerable | fixed | fixed | fixed | fixed | fixed | NLnet Labs Unbound, up to and including version 1.16.1 is vulnerable t ... |
CVE-2022-3204 | vulnerable | vulnerable | fixed | fixed | fixed | fixed | fixed | A vulnerability named 'Non-Responsive Delegation Attack' (NRDelegation ... |
CVE-2020-28935 | vulnerable | vulnerable | fixed | fixed | fixed | fixed | fixed | NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs ... |
CVE-2020-12663 | vulnerable | vulnerable | fixed | fixed | fixed | fixed | fixed | Unbound before 1.10.1 has an infinite loop via malformed DNS answers r ... |
CVE-2020-12662 | vulnerable | vulnerable | fixed | fixed | fixed | fixed | fixed | Unbound before 1.10.1 has Insufficient Control of Network Message Volu ... |
CVE-2019-25042 | vulnerable | vulnerable | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an out-of-bounds write via a compressed na ... |
CVE-2019-25041 | vulnerable | vulnerable | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an assertion failure via a compressed name ... |
CVE-2019-25040 | vulnerable | vulnerable | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an infinite loop via a compressed name in ... |
CVE-2019-25039 | vulnerable | vulnerable | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an integer overflow in a size calculation ... |
CVE-2019-25038 | vulnerable | vulnerable | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an integer overflow in a size calculation ... |
CVE-2019-25037 | vulnerable | vulnerable | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an assertion failure and denial of service ... |
CVE-2019-25036 | vulnerable | vulnerable | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an assertion failure and denial of service ... |
CVE-2019-25035 | vulnerable | vulnerable | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an out-of-bounds write in sldns_bget_token ... |
CVE-2019-25034 | vulnerable | vulnerable | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an integer overflow in sldns_str2wire_dnam ... |
CVE-2019-25033 | vulnerable | vulnerable | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an integer overflow in the regional alloca ... |
CVE-2019-25032 | vulnerable | vulnerable | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows an integer overflow in the regional alloca ... |
CVE-2019-25031 | vulnerable | vulnerable | vulnerable | fixed | fixed | fixed | fixed | Unbound before 1.9.5 allows configuration injection in create_unbound_ ... |
Bug | Description |
---|
CVE-2024-1488 | A vulnerability was found in Unbound due to incorrect default permissi ... |
CVE-2020-10772 | An incomplete fix for CVE-2020-12662 was shipped for Unbound in Red Ha ... |
CVE-2019-16866 | Unbound before 1.9.4 accesses uninitialized memory, which allows remot ... |
CVE-2017-15105 | A flaw was found in the way unbound before 1.6.8 validated wildcard-sy ... |
CVE-2014-8602 | iterator.c in NLnet Labs Unbound before 1.5.1 does not limit delegatio ... |
CVE-2011-4869 | validator/val_nsec3.c in Unbound before 1.4.13p2 does not properly per ... |
CVE-2011-4528 | Unbound before 1.4.13p2 attempts to free unallocated memory during pro ... |
CVE-2011-1922 | daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functiona ... |
CVE-2010-0969 | Unbound before 1.4.3 does not properly align structures on 64-bit plat ... |
CVE-2009-4008 | Unbound before 1.4.4 does not send responses for signed zones after mi ... |
CVE-2009-3602 | Unbound before 1.3.4 does not properly verify signatures for NSEC3 rec ... |