FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

unbound -- parsing vulnerability

Affected packages
unbound < 1.9.5

Details

VuXML ID ffc80e58-0dcb-11ea-9673-4c72b94353b5
Discovery 2019-11-19
Entry 2019-11-23

Unbound Security Advisories:

Recent versions of Unbound contain a vulnerability that can cause shell code execution after receiving a specially crafted answer. This issue can only be triggered if unbound was compiled with --enable-ipsecmod support, and ipsecmod is enabled and used in the configuration.

[source]

References

CVE Name CVE-2019-18934
URL https://nlnetlabs.nl/projects/unbound/security-advisories/#vulnerability-in-ipsec-module

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.