Bugzilla – Bug 1152997
VUL-1: CVE-2019-16866: unbound: Accesses uninitialized memory, triggerd by crafted NOTIFY queries
Last modified: 2019-10-04 22:12:31 UTC
Unbound before 1.9.4 accesses uninitialized memory, which allows remote
attackers to trigger a crash via a crafted NOTIFY query. The source IP address
of the query must match an access-control rule.