CVE-2011-4869
EPSS 2.1%Published: 12/20/2011Modified: 4/28/2026
Also known as:DEBIAN-CVE-2011-4869
Description
validator/val_nsec3.c in Unbound before 1.4.13p2 does not properly perform proof processing for NSEC3-signed zones, which allows remote DNS servers to cause a denial of service (daemon crash) via a malformed response that lacks expected NSEC3 records, a different vulnerability than CVE-2011-4528.
Affected packages (1)
- Debian/unboundfrom 0, < 1.4.14-1