THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2019-25038

Reserved:2021-04-27
Published:2021-04-27
Updated:2024-06-11

Description

Unbound before 1.9.5 allows an integer overflow in a size calculation in dnscrypt/dnscrypt.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited

References

https://ostif.org/our-audit-of-unbound-dns-by-x41-d-sec-full-results/

https://lists.debian.org/debian-lts-announce/2021/05/msg00007.html ([debian-lts-announce] 20210506 [SECURITY] [DLA 2652-1] unbound1.9 security update) mailing-list

https://security.netapp.com/advisory/ntap-20210507-0007/

cve.org CVE-2019-25038

nvd.nist.gov CVE-2019-25038

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2019-25038