Maintained by: NLnet Labs

[Unbound-users] VU#209659 CVE-2011-4528: Unbound denial of service vulnerabilities from nonstandard redirection and denial of existence

Florian Weimer
Mon Dec 19 13:07:37 CET 2011


* W. C. A. Wijngaards:

> Subject: Unbound denial of service vulnerabilities from nonstandard
> redirection and denial of existence [ VU#209659 CVE-2011-4528 ]

> These two problems were discovered within 24 hours, hence a combined
> vulnerability disclosure.

I believe that CVE-2011-4528 only applies to this issue:

> == Description 1: crash on signed duplicate Resource Records

For the other issue, no CVE identifier has been assigned yet, it
appears.

-- 
Florian Weimer                <fweimer at bfk.de>
BFK edv-consulting GmbH       http://www.bfk.de/
Kriegsstraße 100              tel: +49-721-96201-1
D-76133 Karlsruhe             fax: +49-721-96201-99