unbound - Arch Linux
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-1164 | 1.10.0-2 | 1.10.1-1 | High | Fixed | |
| AVG-1042 | 1.9.3-4 | 1.9.4-1 | High | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2020-12663 | AVG-1164 | High | Yes | Denial of service | A security issue has been found in Unbound before 1.1.0.1, in the parser of received answers. Malformed answers received from upstream servers can result in... |
| CVE-2020-12662 | AVG-1164 | High | Yes | Denial of service | An issue has been found in unbound before 1.10.1, that makes it possible to have a single incoming query result in a large number of outgoing queries. This... |
| CVE-2019-16866 | AVG-1042 | High | Yes | Denial of service | Due to an error in parsing NOTIFY queries, it is possible for Unbound from 1.7.1 up to and including 1.9.3 to continue processing malformed queries and may... |
Advisories
| Date | Advisory | Group | Severity | Description |
|---|---|---|---|---|
| 20 May 2020 | ASA-202005-14 | AVG-1164 | High | denial of service |
| 11 Oct 2019 | ASA-201910-6 | AVG-1042 | High | denial of service |