Vulnerabilities (CVE)

Vendor filter

Nlnetlabs Subscribe

Filter

16 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-16866 2 Nlnetlabs, Canonical 2 Unbound, Ubuntu Linux 2019-10-16 5.0
Unbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a crash via a crafted NOTIFY query. The source IP address of the query must match an access-control rule.
CVE-2017-15105 3 Nlnetlabs, Debian, Canonical 3 Unbound, Debian Linux, Ubuntu Linux 2019-10-09 5.0
A flaw was found in the way unbound before 1.6.8 validated wildcard-synthesized NSEC records. An improperly validated wildcard NSEC record could be used to prove the non-existence (NXDOMAIN answer) of an existing wildcard record, or trick unbound...
CVE-2019-13207 1 Nlnetlabs 1 Name Server Daemon 2019-09-08 7.5
nsd-checkzone in NLnet Labs NSD 4.2.0 has a Stack-based Buffer Overflow in the dname_concatenate() function in dname.c.
CVE-2017-1000231 1 Nlnetlabs 1 Ldns 2018-02-04 7.5
A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified impact and attack vectors.
CVE-2012-2978 1 Nlnetlabs 1 Nsd 2017-12-22 5.0
query.c in NSD 3.0.x through 3.0.8, 3.1.x through 3.1.1, and 3.2.x before 3.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via a crafted DNS packet.
CVE-2017-1000232 1 Nlnetlabs 1 Ldns 2017-11-29 7.5
A double-free vulnerability in str2host.c in ldns 1.7.0 have unspecified impact and attack vectors.
CVE-2011-1922 1 Nlnetlabs 1 Unbound 2017-08-17 4.3
daemon/worker.c in Unbound 1.x before 1.4.10, when debugging functionality and the interface-automatic option are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted DNS request that...
CVE-2009-3602 1 Nlnetlabs 1 Unbound 2017-08-17 7.5
Unbound before 1.3.4 does not properly verify signatures for NSEC3 records, which allows remote attackers to cause secure delegations to be downgraded via DNS spoofing or other DNS-related attacks in conjunction with crafted delegation responses.
CVE-2016-6173 1 Nlnetlabs 1 Nsd 2017-02-24 7.8
NSD before 4.1.11 allows remote DNS master servers to cause a denial of service (/tmp disk consumption and slave server crash) via a zone transfer with unlimited data.
CVE-2011-3581 1 Nlnetlabs 1 Ldns 2016-12-08 6.8
Heap-based buffer overflow in the ldns_rr_new_frm_str_internal function in ldns before 1.6.11 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Resource Record (RR) with an unknown type...
CVE-2014-8602 3 Debian, Nlnetlabs, Canonical 3 Unbound, Ubuntu Linux, Debian Linux 2016-11-28 4.3
iterator.c in NLnet Labs Unbound before 1.5.1 does not limit delegation chaining, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a large or infinite number of referrals.
CVE-2014-3209 1 Nlnetlabs 1 Ldns 2014-11-17 2.1
The ldns-keygen tool in ldns 1.6.x uses the current umask to set the privileges of the private key, which might allow local users to obtain the private key by reading the file.
CVE-2009-4008 1 Nlnetlabs 1 Unbound 2011-06-14 5.0
Unbound before 1.4.4 does not send responses for signed zones after mishandling an unspecified query, which allows remote attackers to cause a denial of service (DNSSEC outage) via a crafted query.
CVE-2010-0969 1 Nlnetlabs 1 Unbound 2011-06-02 5.0
Unbound before 1.4.3 does not properly align structures on 64-bit platforms, which allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.
CVE-2009-1755 1 Nlnetlabs 1 Nsd 2009-05-29 5.0
Off-by-one error in the packet_read_query_section function in packet.c in nsd 3.2.1, and process_query_section in query.c in nsd 2.3.7, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via...
CVE-2009-1086 1 Nlnetlabs 1 Ldns 2009-05-15 6.4
Heap-based buffer overflow in the ldns_rr_new_frm_str_internal function in ldns 1.4.x allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via a DNS resource record (RR) with a long (1)...