FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

unbound -- vulnerability in the processing of wildcard synthesized NSEC records

Affected packages
unbound < 1.6.8

Details

VuXML ID 8d3bae09-fd28-11e7-95f2-005056925db4
Discovery 2017-10-08
Entry 2018-01-19

Unbound reports:

We discovered a vulnerability in the processing of wildcard synthesized NSEC records. While synthesis of NSEC records is allowed by RFC4592, these synthesized owner names should not be used in the NSEC processing. This does, however, happen in Unbound 1.6.7 and earlier versions.

References

CVE Name CVE-2017-15105
FreeBSD PR ports/225313
URL https://unbound.net/downloads/CVE-2017-15105.txt