FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 03:12:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
108a4be3-e612-11e9-9963-5f1753e0aca0unbound -- parsing vulnerability

Unbound Security Advisories:

Due to an error in parsing NOTIFY queries, it is possible for Unbound to continue processing malformed queries and may ultimately result in a pointer dereference in uninitialized memory. This results in a crash of the Unbound daemon.


Discovery 2019-10-03
Entry 2019-10-03
unbound
ge 1.7.1 lt 1.9.4

https://www.nlnetlabs.nl/projects/unbound/security-advisories/#vulnerability-in-parsing-notify-queries
CVE-2019-16866
10d73529-7f4b-11e4-af66-00215af774f0unbound -- can be tricked into following an endless series of delegations, this consumes a lot of resources

Unbound developer reports:

The resolver can be tricked into following an endless series of delegations, this consumes a lot of resources.


Discovery 2014-12-08
Entry 2014-12-09
Modified 2016-08-09
unbound
< 1.5.1

FreeBSD
ge 10.0 lt 10.0_14

ge 10.1 lt 10.1_2

http://unbound.net/downloads/CVE-2014-8602.txt
SA-14:30.unbound
CVE-2014-8602
388ebb5b-3c95-11eb-929d-d4c9ef517024Unbound/NSD -- Denial of service vulnerability

NLNetLabs reports:

Unbound and NSD when writing the PID file would not check if an existing file was a symlink. This could allow for a local symlink \ attack if an attacker has access to the user Unbound/NSD runs as.


Discovery 2020-12-01
Entry 2020-12-12
unbound
< 1.13.0

nsd
< 4.3.4

https://nlnetlabs.nl/downloads/unbound/CVE-2020-28935.txt
CVE-2020-28935
7ba65bfd-2a40-11e1-b96e-00215af774f0unbound -- denial of service vulnerabilities from nonstandard redirection and denial of existence

Unbound developer reports:

Unbound crashes when confronted with a non-standard response from a server for a domain. This domain produces duplicate RRs from a certain type and is DNSSEC signed. Unbound also crashes when confronted with a query that eventually, and under specific circumstances, resolves to a domain that misses expected NSEC3 records.


Discovery 2011-12-19
Entry 2011-12-19
unbound
< 1.4.14

CVE-2011-4528
http://unbound.nlnetlabs.nl/downloads/CVE-2011-4528.txt
8d3bae09-fd28-11e7-95f2-005056925db4unbound -- vulnerability in the processing of wildcard synthesized NSEC records

Unbound reports:

We discovered a vulnerability in the processing of wildcard synthesized NSEC records. While synthesis of NSEC records is allowed by RFC4592, these synthesized owner names should not be used in the NSEC processing. This does, however, happen in Unbound 1.6.7 and earlier versions.


Discovery 2017-10-08
Entry 2018-01-19
unbound
< 1.6.8

https://unbound.net/downloads/CVE-2017-15105.txt
CVE-2017-15105
ports/225313
a2cb7c31-9c79-11ea-a9c2-d05099c0ae8cunbound -- mutliple vulnerabilities

NLNetLabs reports:

This release fixes CVE-2020-12662 and CVE-2020-12663.

Bug Fixes:

  • CVE-2020-12662 Unbound can be tricked into amplifying an incoming query into a large number of queries directed to a target.
  • CVE-2020-12663 Malformed answers from upstream name servers can be used to make Unbound unresponsive.

Discovery 2020-05-19
Entry 2020-05-22
Modified 2020-07-10
unbound
< 1.10.1

FreeBSD
ge 12.1 lt 12.1_7

ge 11.4 lt 11.4_1

ge 11.3 lt 11.3_11

SA-20:19.unbound
https://lists.nlnetlabs.nl/pipermail/unbound-users/2020-May/006833.html
CVE-2020-12662
CVE-2020-12663
dc96ac1f-86b1-11e0-9e85-00215af774f0Unbound -- an empty error packet handling assertion failure

Unbound developer reports:

NLnet Labs was notified of an error in Unbound's code-path for error replies which is triggered under special conditions. The error causes the program to abort.


Discovery 2011-05-25
Entry 2011-05-25
unbound
< 1.4.10

CVE-2011-1922
http://unbound.nlnetlabs.nl/downloads/CVE-2011-1922.txt
ffc80e58-0dcb-11ea-9673-4c72b94353b5unbound -- parsing vulnerability

Unbound Security Advisories:

Recent versions of Unbound contain a vulnerability that can cause shell code execution after receiving a specially crafted answer. This issue can only be triggered if unbound was compiled with --enable-ipsecmod support, and ipsecmod is enabled and used in the configuration.


Discovery 2019-11-19
Entry 2019-11-23
unbound
< 1.9.5

https://nlnetlabs.nl/projects/unbound/security-advisories/#vulnerability-in-ipsec-module
CVE-2019-18934