Oval Definition:	oval:org.mitre.oval:def:15048
Revision Date: 2014-06-23 Version: 20 Title: DSA-2370-1 unbound -- several Description: It was discovered that Unbound, a recursive DNS resolver, would crash when processing certain malformed DNS responses from authoritative DNS servers, leading to denial of service. CVE-2011-4528 Unbound attempts to free unallocated memory during processing of duplicate CNAME records in a signed zone. CVE-2011-4869 Unbound does not properly process malformed responses which lack expected NSEC3 records. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2011-4528 CVE-2011-4869 DSA-2370-1 Platform(s): Debian GNU/kFreeBSD 6.0 Debian GNU/Linux 5.0 Debian GNU/Linux 6.0 Product(s): unbound Definition Synopsis Release section Debian GNU/Linux 5.0 is installed AND Installed architecture is all AND unbound DPKG is earlier than 1.4.6-1~lenny2 OR Release section Debian 6.0 is installed AND GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed OR Debian GNU/kFreeBSD is installed AND Installed architecture is all AND unbound DPKG is earlier than 1.4.6-1+squeeze2
BACK