CVE-2009-4008

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2009-4008

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2009-4008.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2009-4008

Downstream

DEBIAN-CVE-2009-4008

DSA-2243-1

Published

2011-06-02T20:55:01Z

Modified

2025-08-09T20:01:27Z

Summary

[none]

Details

Unbound before 1.4.4 does not send responses for signed zones after mishandling an unspecified query, which allows remote attackers to cause a denial of service (DNSSEC outage) via a crafted query.

References

http://www.debian.org/security/2011/dsa-2243
http://unbound.nlnetlabs.nl/downloads/unbound-1.4.4.tar.gz
http://packages.debian.org/changelogs/pool/main/u/unbound/unbound_1.4.6-1/changelog

CVE-2009-4008

Affected packages