CVE-2019-25039
published 2021-04-27CVE-2019-25039: Unbound before 1.9.5 allows an integer overflow in a size calculation in respip/respip.c. NOTE: The vendor disputes that this is a vulnerability. Although the…
PriorityP347critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
2.04%
78.7th percentile
Unbound before 1.9.5 allows an integer overflow in a size calculation in respip/respip.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | unbound | < unbound 1.9.6-1 (bookworm) | unbound 1.9.6-1 (bookworm) |
| nlnetlabs | unbound | < 1.9.5 | 1.9.5 |
| nlnetlabs | unbound | >= 0 < 1.9.6-1 | 1.9.6-1 |
| nlnetlabs | unbound | >= 0 < 1.9.6-1 | 1.9.6-1 |
| nlnetlabs | unbound | >= 0 < 1.9.6-1 | 1.9.6-1 |
| nlnetlabs | unbound | >= 0 < 1.9.6-1 | 1.9.6-1 |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv9.8CRITICAL
vendor_debian9.8LOW
vendor_redhat9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-gr73-g2gc-58cw: Unbound before 1
ghsa_unreviewed·2022-05-24
CVE-2019-25039 [CRITICAL] CWE-190 GHSA-gr73-g2gc-58cw: Unbound before 1
Unbound before 1.9.5 allows an integer overflow in a size calculation in respip/respip.c.
OSV
CVE-2019-25039: Unbound before 1
osv·2021-04-27·CVSS 9.8
CVE-2019-25039 [CRITICAL] CVE-2019-25039: Unbound before 1
Unbound before 1.9.5 allows an integer overflow in a size calculation in respip/respip.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited
Ubuntu
Unbound vulnerabilities
vendor_ubuntu·2021-05-06
CVE-2019-25031 Unbound vulnerabilities
Title: Unbound vulnerabilities
Summary: Several security issues were fixed in Unbound.
It was discovered that Unbound contained multiple security issues. A
remote attacker could possibly use these issues to cause a denial of
service, inject arbitrary commands, execute arbitrary code, and overwrite
local files.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
unbound: integer overflow in a size calculation in respip/respip.c
vendor_redhat·2019-12-11·CVSS 9.8
CVE-2019-25039 [CRITICAL] CWE-190 unbound: integer overflow in a size calculation in respip/respip.c
unbound: integer overflow in a size calculation in respip/respip.c
Unbound before 1.9.5 allows an integer overflow in a size calculation in respip/respip.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited
A flaw was found in unbound. An integer overflow in ub_packed_rrset_key function may lead to a buffer overflow of the allocated buffer if the size can be controlled by an attacker. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.
Statement: There is no available reproducer or proof of concept for this issue, nor it was ever proven the integer overflow can lead to a buffer overflow in practice. Indeed in t
Debian
CVE-2019-25039: unbound - Unbound before 1.9.5 allows an integer overflow in a size calculation in respip/...
vendor_debian·2019·CVSS 9.8
CVE-2019-25039 [CRITICAL] CVE-2019-25039: unbound - Unbound before 1.9.5 allows an integer overflow in a size calculation in respip/...
Unbound before 1.9.5 allows an integer overflow in a size calculation in respip/respip.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited
Scope: local
bookworm: resolved (fixed in 1.9.6-1)
bullseye: resolved (fixed in 1.9.6-1)
forky: resolved (fixed in 1.9.6-1)
sid: resolved (fixed in 1.9.6-1)
trixie: resolved (fixed in 1.9.6-1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://lists.debian.org/debian-lts-announce/2021/05/msg00007.htmlhttps://ostif.org/our-audit-of-unbound-dns-by-x41-d-sec-full-results/https://security.netapp.com/advisory/ntap-20210507-0007/https://lists.debian.org/debian-lts-announce/2021/05/msg00007.htmlhttps://ostif.org/our-audit-of-unbound-dns-by-x41-d-sec-full-results/https://security.netapp.com/advisory/ntap-20210507-0007/
2021-04-27
Published