RE: CVE 2024 1931 - unbound

From: Wall, Stephen <stephen.wall_at_redcom.com>
Date: Mon, 08 Jul 2024 18:08:16 UTC
> > > a prerequisite for the DoS attack described in CVE-2024-1931.
> Did you actually mean CVE-2024-33655 instead?

I mean CVE-2024-1931, in which unbound is vulnerable to a DoS if 'ede: yes' is configured.
This is fixed in unbound 1.19.2, but 14.0 uses 1.19.1.