Allele Security Alert
Vulnerability in parsing NOTIFY queries
Unbound version 1.7.1 up to and including version 1.9.3
Unbound version 1.9.4
Proof of concept
Due to an error in parsing NOTIFY queries, it is possible for Unbound to continue processing malformed queries and may ultimately result in a pointer dereference in uninitialized memory. This results in a crash of the Unbound daemon.
Unbound: Vulnerability in parsing NOTIFY queries
CVE-2019-16866 | SUSE
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: October 14, 2019