DSA-5620-1 unbound -- unboundID: oval:org.secpod.oval:def:612983 | Date: (C)2024-02-29 (M)2024-05-09 |
Class: PATCH | Family: unix |
Two vulnerabilities were discovered in unbound, a validating, recursive, caching DNS resolver. Specially crafted DNSSEC answers could lead unbound down a very CPU intensive and time costly DNSSEC or NSEC3 hash validation path, resulting in denial of service. Details can be found at https://nlnetlabs.nl/downloads/unbound/CVE-2023-50387_CVE-2023-50868.txt
Platform: |
Debian 12.x |
Debian 11.x |
Product: |
unbound |
libunbound-dev |
python3-unbound |
libunbound8 |