CVE-2019-16866 - log back

CVE-2019-16866 edited at 11 Oct 2019 21:03:32
References
https://www.nlnetlabs.nl/downloads/unbound/CVE-2019-16866.txt
+ https://github.com/NLnetLabs/unbound/commit/b60c4a472c856f0a98120b7259e991b3a6507eb5
CVE-2019-16866 edited at 11 Oct 2019 15:51:13
Description
- Due to an error in parsing NOTIFY queries, it is possible for Unbound from 1.7.1 up to and including 1.9.3 to continue processing malformed queries and may ultimately result in a
+ Due to an error in parsing NOTIFY queries, it is possible for Unbound from 1.7.1 up to and including 1.9.3 to continue processing malformed queries and may ultimately result in a pointer dereference in uninitialized memory. This results in a crash of the Unbound daemon.
- pointer dereference in uninitialized memory. This results in a crash of the Unbound daemon.
CVE-2019-16866 edited at 11 Oct 2019 15:50:56
Description
- Due to an error in parsing NOTIFY queries, it is possible for Unbound from 1.7.1 up to and including 19.3 to continue processing malformed queries and may ultimately result in a
+ Due to an error in parsing NOTIFY queries, it is possible for Unbound from 1.7.1 up to and including 1.9.3 to continue processing malformed queries and may ultimately result in a
pointer dereference in uninitialized memory. This results in a crash of the Unbound daemon.
CVE-2019-16866 edited at 03 Oct 2019 12:16:24
Severity
- Unknown
+ High
Remote
- Unknown
+ Remote
Type
- Unknown
+ Denial of service
Description
+ Due to an error in parsing NOTIFY queries, it is possible for Unbound from 1.7.1 up to and including 19.3 to continue processing malformed queries and may ultimately result in a
+ pointer dereference in uninitialized memory. This results in a crash of the Unbound daemon.
References
+ https://www.nlnetlabs.nl/downloads/unbound/CVE-2019-16866.txt
Notes
CVE-2019-16866 created at 03 Oct 2019 12:15:21