Unbound 1.6.4 up to and including 1.9.4 contain a vulnerability in the ipsec module that can cause shell code execution after receiving a specially crafted answer. This issue can only be triggered if unbound was compiled with `--enable-ipsecmod` support, and ipsecmod is enabled and used in the configuration.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
nlnetlabs unbound |
||
fedoraproject fedora 31 |
||
opensuse leap 15.1 |
||
opensuse leap 15.2 |