[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 107-1] unbound security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : unbound
Version        : 1.4.6-1+squeeze4
CVE ID         : CVE-2014-8602
Debian Bug     : 772622

Florian Maury from ANSSI discovered that unbound, a validating,
recursive, and caching DNS resolver, was prone to a denial of service
vulnerability. An attacker crafting a malicious zone and able to emit
(or make emit) queries to the server can trick the resolver into
following an endless series of delegations, leading to ressource
exhaustion and huge network usage.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=d2ze
-----END PGP SIGNATURE-----


Reply to: