Download
| Alert*
oval:org.secpod.oval:def:503769
The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fix: * unbound: amplification of an incoming query into a large number of queries directed to a target * unbound: infinite loop via malformed DNS answers received from upstream servers For more detai ... oval:org.secpod.oval:def:503789 The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fix: * unbound: amplification of an incoming query into a large number of queries directed to a target * unbound: infinite loop via malformed DNS answers received from upstream servers For more detai ... oval:org.secpod.oval:def:503770 The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fix: * unbound: amplification of an incoming query into a large number of queries directed to a target * unbound: infinite loop via malformed DNS answers received from upstream servers For more detai ... oval:org.secpod.oval:def:63403 Unbound before 1.10.1 has Insufficient Control of Network Message Volume, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records. oval:org.secpod.oval:def:64119 unbound: validating, recursive, caching DNS resolver Several security issues were fixed in Unbound. oval:org.secpod.oval:def:64149 Two vulnerabiliites have been discovered in Unbound, a recursive-only caching DNS server; a traffic amplification attack against third party authoritative name servers and insufficient sanitisation of replies from upstream servers could result in denial of service via an infinite loop. The version ... oval:org.secpod.oval:def:63415 The host is installed with Unbound before 1.10.1 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle the network message volume. Successful exploitation could allow attackers to make unbound enter into an infinite loop and thereby b ... oval:org.secpod.oval:def:89050500 This update for unbound fixes the following issues: - CVE-2020-12662: Fixed an issue where unbound could have been tricked into amplifying an incoming query into a large number of queries directed to a target . - CVE-2020-12663: Fixed an issue where malformed answers from upstream name servers could ... oval:org.secpod.oval:def:118248 Unbound is a validating, recursive, and caching DNS resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modular comp ... oval:org.secpod.oval:def:1801939 Affected Versions: All version of Unbound up to and including 1.10.0 oval:org.secpod.oval:def:1601142 A network amplification vulnerability was found in Unbound, in the way it processes delegation messages from one authoritative zone to another. This flaw allows an attacker to cause a denial of service or be part of an attack against another DNS server when Unbound is deployed as a recursive resolve ... oval:org.secpod.oval:def:118273 Unbound is a validating, recursive, and caching DNS resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modular comp ... oval:org.secpod.oval:def:1502935 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1502936 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:705490 unbound: validating, recursive, caching DNS resolver Several security issues were fixed in Unbound. oval:org.secpod.oval:def:1700338 infinite loop via malformed DNS answers received from upstream servers insufficient control of network message volume leads to DoS oval:org.secpod.oval:def:604868 Two vulnerabiliites have been discovered in Unbound, a recursive-only caching DNS server; a traffic amplification attack against third party authoritative name servers and insufficient sanitisation of replies from upstream servers could result in denial of service via an infinite loop. The version ... oval:org.secpod.oval:def:205579 The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fix: * unbound: amplification of an incoming query into a large number of queries directed to a target * unbound: infinite loop via malformed DNS answers received from upstream servers For more detai ... oval:org.secpod.oval:def:1502956 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:89000641 This update for unbound fixes the following issues: - CVE-2020-12662: Fixed an issue where unbound could have been tricked into amplifying an incoming query into a large number of queries directed to a target . - CVE-2020-12663: Fixed an issue where malformed answers from upstream name servers could ... |