RE: CVE 2024 1931 - unbound
- In reply to: Cy Schubert : "Re: CVE 2024 1931 - unbound"
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Mon, 08 Jul 2024 18:08:16 UTC
> > > a prerequisite for the DoS attack described in CVE-2024-1931. > Did you actually mean CVE-2024-33655 instead? I mean CVE-2024-1931, in which unbound is vulnerable to a DoS if 'ede: yes' is configured. This is fixed in unbound 1.19.2, but 14.0 uses 1.19.1.