Nlnet Labs Nsd vulnerabilities
5 known vulnerabilities affecting nlnet_labs/nsd.
Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH4MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2026-12244P3HIGHCVSS 8.8≥ 4.14.0, < 4.14.32026-06-25
CVE-2026-12244 [HIGH] CWE-122 CVE-2026-12244: If NSD is configured as secondary for a zone, the primary of that zone can crash NSD with an AXFR co
If NSD is configured as secondary for a zone, the primary of that zone can crash NSD with an AXFR containing a DNS message with a special crafted SVCB RR with an rdata size of 65512, that let's an (uint16_t) variable that is used to allocate space needed for the RR wrap (because total size > 65535), causing a heap overflow. The attacker can perform a
nvd
CVE-2026-12246P3HIGHCVSS 8.1≥ 4.14.0, < 4.14.32026-06-25
CVE-2026-12246 [HIGH] CWE-20 CVE-2026-12246: NSD version 4.14.0 introduced a bug where a specially crafted APL RR, with an adflength larger than
NSD version 4.14.0 introduced a bug where a specially crafted APL RR, with an adflength larger than permitted for the address family will overwrite the stack when the zone is written to disk, with a maximum of 111 attacker controlled bytes.
nvd
CVE-2026-12490P3HIGHCVSS 7.5≥ 4.10.1, < 4.14.32026-06-25
CVE-2026-12490 [HIGH] CWE-284 CVE-2026-12490: When a provide-xfr is given with a tls-auth-name, a secondary requesting a transfer should provide a
When a provide-xfr is given with a tls-auth-name, a secondary requesting a transfer should provide a client certificate with that name. However, no client certificate is needed when the request comes in over TLS over the regular tls-port (and not the tls-auth-port) or over over TCP over the regular port, when the other conditions of the provide-xfr ru
nvd
CVE-2026-12245P3HIGHCVSS 7.5≥ 4.13.0, < 4.14.32026-06-25
CVE-2026-12245 [HIGH] CWE-416 CVE-2026-12245: NSD from version 4.13.0 has a heap use-after-free bug in logging errors on TLS connections, causing
NSD from version 4.13.0 has a heap use-after-free bug in logging errors on TLS connections, causing a crash of the server process, which can be triggered trivially by sending a DNS query over a DoT connection, and closing the connection without reading the response.
nvd
CVE-2020-28935P4MEDIUMCVSS 5.5≤ 4.3.32020-12-07
CVE-2020-28935 [MEDIUM] CWE-59 CVE-2020-28935: NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including vers
NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would
nvd