CVE-2019-25040
published 2021-04-27CVE-2019-25040: Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code…
PriorityP339high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
1.99%
78.1th percentile
Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | unbound | < unbound 1.9.6-1 (bookworm) | unbound 1.9.6-1 (bookworm) |
| nlnetlabs | unbound | < 1.9.5 | 1.9.5 |
| nlnetlabs | unbound | >= 0 < 1.9.6-1 | 1.9.6-1 |
| nlnetlabs | unbound | >= 0 < 1.9.6-1 | 1.9.6-1 |
| nlnetlabs | unbound | >= 0 < 1.9.6-1 | 1.9.6-1 |
| nlnetlabs | unbound | >= 0 < 1.9.6-1 | 1.9.6-1 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv7.5HIGH
vendor_debian7.5LOW
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-cq2j-hrgf-rxgp: Unbound before 1
ghsa_unreviewed·2022-05-24
CVE-2019-25040 [HIGH] CWE-835 GHSA-cq2j-hrgf-rxgp: Unbound before 1
Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy.
OSV
CVE-2019-25040: Unbound before 1
osv·2021-04-27·CVSS 7.5
CVE-2019-25040 [HIGH] CVE-2019-25040: Unbound before 1
Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited
Ubuntu
Unbound vulnerabilities
vendor_ubuntu·2021-05-06
CVE-2019-25031 Unbound vulnerabilities
Title: Unbound vulnerabilities
Summary: Several security issues were fixed in Unbound.
It was discovered that Unbound contained multiple security issues. A
remote attacker could possibly use these issues to cause a denial of
service, inject arbitrary commands, execute arbitrary code, and overwrite
local files.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
unbound: infinite loop via a compressed name in dname_pkt_copy
vendor_redhat·2019-12-11·CVSS 7.5
CVE-2019-25040 [HIGH] CWE-835 unbound: infinite loop via a compressed name in dname_pkt_copy
unbound: infinite loop via a compressed name in dname_pkt_copy
Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited
A flaw was found in unbound. An infinite loop in dname_pkt_copy function could be triggered by a remote attacker. The highest threat from this vulnerability is to service availability.
Statement: There is no available reproducer or proof of concept for this issue, nor it was ever proven the infinite loop can be triggered in practice. Indeed in the original report this issue was considered one that might not be triggered and for this reason its Impact is Moderate. Upstream has als
Debian
CVE-2019-25040: unbound - Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_...
vendor_debian·2019·CVSS 7.5
CVE-2019-25040 [HIGH] CVE-2019-25040: unbound - Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_...
Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited
Scope: local
bookworm: resolved (fixed in 1.9.6-1)
bullseye: resolved (fixed in 1.9.6-1)
forky: resolved (fixed in 1.9.6-1)
sid: resolved (fixed in 1.9.6-1)
trixie: resolved (fixed in 1.9.6-1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://lists.debian.org/debian-lts-announce/2021/05/msg00007.htmlhttps://ostif.org/our-audit-of-unbound-dns-by-x41-d-sec-full-results/https://security.netapp.com/advisory/ntap-20210507-0007/https://lists.debian.org/debian-lts-announce/2021/05/msg00007.htmlhttps://ostif.org/our-audit-of-unbound-dns-by-x41-d-sec-full-results/https://security.netapp.com/advisory/ntap-20210507-0007/
2021-04-27
Published