Information on source package unbound1.9

Available versions

ReleaseVersion
stretch1.9.0-2+deb10u2~deb9u4
stretch (security)1.9.0-2+deb10u2~deb9u2

Open issues

BugstretchDescription
CVE-2024-43168vulnerableA heap-buffer-overflow flaw was found in the cfg_mark_ports function w ...
CVE-2024-43167vulnerableA NULL pointer dereference flaw was found in the ub_ctx_set_fwd functi ...
CVE-2024-33655vulnerable (no DSA, ignored)The DNS protocol in RFC 1035 and updates allows remote attackers to ca ...

Resolved issues

BugDescription
CVE-2024-1931NLnet Labs Unbound version 1.18.0 up to and including version 1.19.1 c ...
CVE-2024-1488A vulnerability was found in Unbound due to incorrect default permissi ...
CVE-2023-50868The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 whe ...
CVE-2023-50387Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6 ...
CVE-2022-30699NLnet Labs Unbound, up to and including version 1.16.1, is vulnerable ...
CVE-2022-30698NLnet Labs Unbound, up to and including version 1.16.1 is vulnerable t ...
CVE-2022-3204A vulnerability named 'Non-Responsive Delegation Attack' (NRDelegation ...
CVE-2020-28935NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs ...
CVE-2020-12663Unbound before 1.10.1 has an infinite loop via malformed DNS answers r ...
CVE-2020-12662Unbound before 1.10.1 has Insufficient Control of Network Message Volu ...
CVE-2019-25042Unbound before 1.9.5 allows an out-of-bounds write via a compressed na ...
CVE-2019-25041Unbound before 1.9.5 allows an assertion failure via a compressed name ...
CVE-2019-25040Unbound before 1.9.5 allows an infinite loop via a compressed name in ...
CVE-2019-25039Unbound before 1.9.5 allows an integer overflow in a size calculation ...
CVE-2019-25038Unbound before 1.9.5 allows an integer overflow in a size calculation ...
CVE-2019-25037Unbound before 1.9.5 allows an assertion failure and denial of service ...
CVE-2019-25036Unbound before 1.9.5 allows an assertion failure and denial of service ...
CVE-2019-25035Unbound before 1.9.5 allows an out-of-bounds write in sldns_bget_token ...
CVE-2019-25034Unbound before 1.9.5 allows an integer overflow in sldns_str2wire_dnam ...
CVE-2019-25033Unbound before 1.9.5 allows an integer overflow in the regional alloca ...
CVE-2019-25032Unbound before 1.9.5 allows an integer overflow in the regional alloca ...
CVE-2019-25031Unbound before 1.9.5 allows configuration injection in create_unbound_ ...

Security announcements

DSA / DLADescription
ELA-1046-1unbound1.9 - security update
ELA-820-1unbound1.9 - security update
DLA-2652-1unbound1.9 - security update
DLA-2556-1unbound1.9 - security update
Search for package or bug name: Reporting problems