CVE-2009-4008

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2009-4008

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2009-4008.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2009-4008

Downstream

DEBIAN-CVE-2009-4008

DSA-2243-1

Published

2011-06-02T20:55:01Z

Modified

2026-04-10T03:40:58.775078Z

Summary

[none]

Details

Unbound before 1.4.4 does not send responses for signed zones after mishandling an unspecified query, which allows remote attackers to cause a denial of service (DNSSEC outage) via a crafted query.

References

http://www.debian.org/security/2011/dsa-2243
http://unbound.nlnetlabs.nl/downloads/unbound-1.4.4.tar.gz
http://packages.debian.org/changelogs/pool/main/u/unbound/unbound_1.4.6-1/changelog

CVE-2009-4008

Affected packages