Unbound vulnerability

2015-01-2600:00:00

ubuntu.com

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.59

Percentile

97.8%

JSON

Releases

Ubuntu 14.10
Ubuntu 14.04 ESM

Packages

unbound - validating, recursive, caching DNS resolver

Details

Florian Maury discovered that Unbound incorrectly handled delegation. A
remote attacker could possibly use this issue to cause Unbound to consume
resources, resulting in a denial of service.

OSVersionArchitecturePackageVersionFilename
Ubuntu14.10noarchlibunbound2< 1.4.22-1ubuntu4.14.10.1UNKNOWN
Ubuntu14.10noarchlibunbound-dev< 1.4.22-1ubuntu4.14.10.1UNKNOWN
Ubuntu14.10noarchpython-unbound< 1.4.22-1ubuntu4.14.10.1UNKNOWN
Ubuntu14.10noarchunbound< 1.4.22-1ubuntu4.14.10.1UNKNOWN
Ubuntu14.10noarchunbound-anchor< 1.4.22-1ubuntu4.14.10.1UNKNOWN
Ubuntu14.10noarchunbound-host< 1.4.22-1ubuntu4.14.10.1UNKNOWN
Ubuntu14.04noarchlibunbound2< 1.4.22-1ubuntu4.14.04.1UNKNOWN
Ubuntu14.04noarchlibunbound-dev< 1.4.22-1ubuntu4.14.04.1UNKNOWN
Ubuntu14.04noarchpython-unbound< 1.4.22-1ubuntu4.14.04.1UNKNOWN
Ubuntu14.04noarchunbound< 1.4.22-1ubuntu4.14.04.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	14.10	noarch	libunbound2	< 1.4.22-1ubuntu4.14.10.1	UNKNOWN
Ubuntu	14.10	noarch	libunbound-dev	< 1.4.22-1ubuntu4.14.10.1	UNKNOWN
Ubuntu	14.10	noarch	python-unbound	< 1.4.22-1ubuntu4.14.10.1	UNKNOWN
Ubuntu	14.10	noarch	unbound	< 1.4.22-1ubuntu4.14.10.1	UNKNOWN
Ubuntu	14.10	noarch	unbound-anchor	< 1.4.22-1ubuntu4.14.10.1	UNKNOWN
Ubuntu	14.10	noarch	unbound-host	< 1.4.22-1ubuntu4.14.10.1	UNKNOWN
Ubuntu	14.04	noarch	libunbound2	< 1.4.22-1ubuntu4.14.04.1	UNKNOWN
Ubuntu	14.04	noarch	libunbound-dev	< 1.4.22-1ubuntu4.14.04.1	UNKNOWN
Ubuntu	14.04	noarch	python-unbound	< 1.4.22-1ubuntu4.14.04.1	UNKNOWN
Ubuntu	14.04	noarch	unbound	< 1.4.22-1ubuntu4.14.04.1	UNKNOWN