CVE-2010-0969

Severity

50%

Complexity

99%

Confidentiality

48%

Unbound before 1.4.3 does not properly align structures on 64-bit platforms, which allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.

CVSS 2.0 Base Score 5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P).

Overview

First reported 14 years ago

2010-03-16 19:00:00

Last updated 13 years ago

2011-06-02 04:00:00

Affected Software

NLnet Labs Unbound 0.0

0.0

NLnet Labs Unbound 0.1

0.1

NLnet Labs Unbound 0.2

0.2

NLnet Labs Unbound 0.3

0.3

NLnet Labs Unbound 0.4

0.4

NLnet Labs Unbound 0.5

0.5

NLnet Labs Unbound 0.6

0.6

NLnet Labs Unbound 0.7

0.7

NLnet Labs Unbound 0.7.1

0.7.1

NLnet Labs Unbound 0.7.2

0.7.2

NLnet Labs Unbound 0.8

0.8

NLnet Labs Unbound 0.10

0.10

NLnet Labs Unbound 0.11

0.11

NLnet Labs Unbound 1.0.0

1.0.0

NLnet Labs Unbound 1.0.1

1.0.1

NLnet Labs Unbound 1.0.2

1.0.2

NLnet Labs Unbound 1.1.0

1.1.0

NLnet Labs Unbound 1.1.1

1.1.1

NLnet Labs Unbound 1.2.0

1.2.0

NLnet Labs Unbound 1.3.2

1.3.2

NLnet Labs Unbound 1.3.3

1.3.3

NLnet Labs Unbound 1.3.4

1.3.4

NLnet Labs Unbound 1.4.1

1.4.1

NLnet Labs Unbound

References

http://bugs.gentoo.org/show_bug.cgi?id=309117

[oss-security] 20100316 Re: CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS

62903

38888

Vendor Advisory

[oss-security] 20100312 CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS

38701

Patch

[unbound-users] 20100311 Unbound 1.4.3 release