CVE-2011-1922

Name of the Vulnerable Software and Affected Versions Unbound versions 1.x through 1.4.9

Description The issue allows remote attackers to cause a denial of service via a crafted DNS request, triggering improper error handling and resulting in an assertion failure and daemon exit. This occurs when debugging functionality and the interface-automatic option are enabled.

Recommendations For Unbound versions 1.x through 1.4.9, update to version 1.4.10 or later to resolve the issue. As a temporary workaround, consider disabling the debugging functionality and interface-automatic option until a patch is available.