unbound
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | Validating, recursive, and caching DNS resolver |
| Version |
1.19.3-3 [extra-testing] 1.19.3-2 [extra] |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-1326 | 1.12.0-1 | 1.13.0-1 | Low | Fixed | |
| AVG-1164 | 1.10.0-2 | 1.10.1-1 | High | Fixed | |
| AVG-1042 | 1.9.3-4 | 1.9.4-1 | High | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2020-28935 | AVG-1326 | Low | No | Denial of service | NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would... |
| CVE-2020-12663 | AVG-1164 | High | Yes | Denial of service | A security issue has been found in Unbound before 1.1.0.1, in the parser of received answers. Malformed answers received from upstream servers can result in... |
| CVE-2020-12662 | AVG-1164 | High | Yes | Denial of service | An issue has been found in unbound before 1.10.1, that makes it possible to have a single incoming query result in a large number of outgoing queries. This... |
| CVE-2019-16866 | AVG-1042 | High | Yes | Denial of service | Due to an error in parsing NOTIFY queries, it is possible for Unbound from 1.7.1 up to and including 1.9.3 to continue processing malformed queries and may... |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 09 Dec 2020 | ASA-202012-17 | AVG-1326 | Low | denial of service |
| 20 May 2020 | ASA-202005-14 | AVG-1164 | High | denial of service |
| 11 Oct 2019 | ASA-201910-6 | AVG-1042 | High | denial of service |