fcb33424c5
jakob@ and myself. See http://www.unbound.net/downloads/CVE-2011-4528.txt for more details, summary from the above is below: -- Unbound crashes when confronted with a non-standard response from a server for a domain. This domain produces duplicate RRs from a certain type and is DNSSEC signed.Unbound also crashes when confronted with a query that eventually, and under specific circumstances, resolves to a domain that misses expected NSEC3 records. These two problems were discovered within 24 hours, hence a combined vulnerability disclosure. By constructing the non standard responses an attacker can use these vulnerabilities for a DOS attack. To our knowledge 'denial of service' is the only type of exploit possible. --
6 lines
294 B
Plaintext
6 lines
294 B
Plaintext
MD5 (unbound-1.4.14.tar.gz) = zWn9qqavAeoLb7xZgC90ug==
|
|
RMD160 (unbound-1.4.14.tar.gz) = E2r/mBLuus5zwmtgj2QRvQSCFcw=
|
|
SHA1 (unbound-1.4.14.tar.gz) = FDUCmr5j0BBiE6y58XO4hRg88dc=
|
|
SHA256 (unbound-1.4.14.tar.gz) = wVuFFF4xdfPZM4NwcbT/qujaSjlBOawOfz3+4RcS59M=
|
|
SIZE (unbound-1.4.14.tar.gz) = 3546634
|