Due to an error in parsing NOTIFY queries, it is possible for Unbound from 1.7.1 up to and including 19.3 to continue processing malformed queries and may ultimately result in a pointer dereference in uninitialized memory. This results in a crash of the Unbound daemon.
Due to an error in parsing NOTIFY queries, it is possible for Unbound from 1.7.1 up to and including 19.3 to continue processing malformed queries and may ultimately result in a pointer dereference in uninitialized memory. This results in a crash of the Unbound daemon.
https://www.nlnetlabs.nl/downloads/unbound/CVE-2019-16866.txt