Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2019-25037

Опубликовано: 27 апр. 2021
Источник: debian
EPSS Низкий

Описание

Unbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an invalid packet. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited

Пакеты

ПакетСтатусВерсия исправленияРелизТип
unboundfixed1.9.6-1package
unboundend-of-lifestretchpackage

Примечания

  • https://github.com/NLnetLabs/unbound/commit/d2eb78e871153f22332d30c6647f3815148f21e5

  • Not deemed an exploitable vulnerability by upstream

EPSS

Процентиль: 77%
0.01026
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2019-25037

CVSS3: 7.5
ubuntu
почти 5 лет назад

Unbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an invalid packet. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited

redhat логотип

CVE-2019-25037

CVSS3: 7.5
redhat
около 6 лет назад

Unbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an invalid packet. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited

nvd логотип

CVE-2019-25037

CVSS3: 7.5
nvd
почти 5 лет назад

Unbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an invalid packet. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited

github логотип

GHSA-gh7v-cx7g-p5jc

CVSS3: 7.5
github
больше 3 лет назад

Unbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an invalid packet.

fstec логотип

BDU:2021-06246

CVSS3: 7.5
fstec
около 6 лет назад

Уязвимость функции dname_pkt_copy DNS-сервера Unbound, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 77%
0.01026
Низкий