CVE-2022-30699
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-30699
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-30699.json
- Related
- Published
- 2022-08-01T15:15:09Z
- Modified
- 2023-11-29T09:41:02.431509Z
- Details
-
NLnet Labs Unbound, up to and including version 1.16.1, is vulnerable to a novel type of the "ghost domain names" attack. The vulnerability works by targeting an Unbound instance. Unbound is queried for a rogue domain name when the cached delegation information is about to expire. The rogue nameserver delays the response so that the cached delegation information is expired. Upon receiving the delayed answer containing the delegation information, Unbound overwrites the now expired entries. This action can be repeated when the delegation information is about to expire making the rogue delegation information ever-updating. From version 1.16.2 on, Unbound stores the start time for a query and uses that to decide if the cached delegation information can be overwritten.
- References
-
- https://security.gentoo.org/glsa/202212-02
- https://www.nlnetlabs.nl/downloads/unbound/CVE-2022-30698_CVE-2022-30699.txt
- https://lists.debian.org/debian-lts-announce/2023/03/msg00024.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5L3ZFWZZFPBIL654BG75RWXUMPFQJ5EC/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D35CX4SCZVNKZTWJXPDFTHWZHINMGEZD/
Affected packages
Alpine:v3.17 / unbound
Package
- Name
- unbound
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0The exact introduced commit is unknownFixed1.16.2-r0
Affected versions
1.*
1.4.10-r0
1.4.10-r1
1.4.10-r2
1.4.10-r3
1.4.13-r0
1.4.13-r1
1.4.13-r2
1.4.13-r3
1.4.14-r0
1.4.15-r0
1.4.16-r0
1.4.17-r0
1.4.18-r0
1.4.19-r0
1.4.19-r1
1.4.19-r2
1.4.20-r0
1.4.20-r1
1.4.20-r2
1.4.21-r0
1.4.21-r1
1.4.21-r2
1.4.22-r0
1.4.22-r1
1.5.1-r0
1.5.2-r0
1.5.2-r1
1.5.3-r0
1.5.4-r0
1.5.6-r0
1.5.6-r1
1.5.6-r2
1.5.6-r3
1.5.6-r4
1.5.7-r0
1.5.7-r1
1.5.8-r0
1.5.8-r1
1.5.9-r0
1.5.9-r1
1.5.10-r0
1.5.10-r1
1.5.10-r2
1.6.0-r0
1.6.0-r1
1.6.1-r0
1.6.1-r1
1.6.2-r0
1.6.3-r0
1.6.4-r0
1.6.5-r0
1.6.6-r0
1.6.7-r0
1.6.7-r1
1.6.7-r2
1.6.8-r0
1.7.0-r0
1.7.0-r1
1.7.0-r2
1.7.1-r0
1.7.3-r0
1.8.0-r0
1.8.1-r0
1.8.1-r1
1.8.3-r0
1.9.0-r0
1.9.1-r0
1.9.1-r1
1.9.1-r2
1.9.2-r0
1.9.2-r1
1.9.3-r0
1.9.4-r0
1.9.4-r1
1.9.5-r0
1.9.5-r1
1.9.5-r2
1.9.5-r3
1.9.6-r0
1.10.0-r0
1.10.1-r0
1.10.1-r1
1.11.0-r0
1.12.0-r0
1.13.0-r0
1.13.0-r1
1.13.0-r2
1.13.0-r3
1.13.1-r0
1.13.1-r1
1.13.1-r2
1.13.2-r0
1.13.2-r1
1.13.2-r2
1.14.0-r0
1.14.0-r1
1.15.0-r0
1.16.0-r0
1.16.0-r1
1.16.1-r0
Alpine:v3.18 / unbound
Package
- Name
- unbound
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0The exact introduced commit is unknownFixed1.16.2-r0
Affected versions
1.*
1.4.10-r0
1.4.10-r1
1.4.10-r2
1.4.10-r3
1.4.13-r0
1.4.13-r1
1.4.13-r2
1.4.13-r3
1.4.14-r0
1.4.15-r0
1.4.16-r0
1.4.17-r0
1.4.18-r0
1.4.19-r0
1.4.19-r1
1.4.19-r2
1.4.20-r0
1.4.20-r1
1.4.20-r2
1.4.21-r0
1.4.21-r1
1.4.21-r2
1.4.22-r0
1.4.22-r1
1.5.1-r0
1.5.2-r0
1.5.2-r1
1.5.3-r0
1.5.4-r0
1.5.6-r0
1.5.6-r1
1.5.6-r2
1.5.6-r3
1.5.6-r4
1.5.7-r0
1.5.7-r1
1.5.8-r0
1.5.8-r1
1.5.9-r0
1.5.9-r1
1.5.10-r0
1.5.10-r1
1.5.10-r2
1.6.0-r0
1.6.0-r1
1.6.1-r0
1.6.1-r1
1.6.2-r0
1.6.3-r0
1.6.4-r0
1.6.5-r0
1.6.6-r0
1.6.7-r0
1.6.7-r1
1.6.7-r2
1.6.8-r0
1.7.0-r0
1.7.0-r1
1.7.0-r2
1.7.1-r0
1.7.3-r0
1.8.0-r0
1.8.1-r0
1.8.1-r1
1.8.3-r0
1.9.0-r0
1.9.1-r0
1.9.1-r1
1.9.1-r2
1.9.2-r0
1.9.2-r1
1.9.3-r0
1.9.4-r0
1.9.4-r1
1.9.5-r0
1.9.5-r1
1.9.5-r2
1.9.5-r3
1.9.6-r0
1.10.0-r0
1.10.1-r0
1.10.1-r1
1.11.0-r0
1.12.0-r0
1.13.0-r0
1.13.0-r1
1.13.0-r2
1.13.0-r3
1.13.1-r0
1.13.1-r1
1.13.1-r2
1.13.2-r0
1.13.2-r1
1.13.2-r2
1.14.0-r0
1.14.0-r1
1.15.0-r0
1.16.0-r0
1.16.0-r1
1.16.1-r0
Git / github.com/nlnetlabs/unbound
Affected versions
Other
final-svn-state
release-0.*
release-0.0
release-0.1
release-0.10
release-0.11
release-0.3
release-0.4
release-0.5
release-0.6
release-0.7
release-0.8
release-1.*
release-1.0.1
release-1.1.1
release-1.10.0rc1
release-1.10.0rc2
release-1.11.0
release-1.11.0rc1
release-1.12.0
release-1.12.0rc1
release-1.13.0rc1
release-1.13.0rc2
release-1.13.0rc3
release-1.13.0rc4
release-1.13.1
release-1.13.1rc1
release-1.13.1rc2
release-1.13.2
release-1.13.2rc1
release-1.14.0
release-1.14.0rc1
release-1.15.0
release-1.15.0rc1
release-1.16.0
release-1.16.0rc1
release-1.16.1
release-1.16.1rc1
release-1.3.1
release-1.3.2
release-1.3.3
release-1.3.3rc1
release-1.4.0
release-1.4.0rc1
release-1.4.1
release-1.4.11
release-1.4.11rc1
release-1.4.11rc2
release-1.4.11rc3
release-1.4.12rc1
release-1.4.13
release-1.4.13rc1
release-1.4.13rc2
release-1.4.14
release-1.4.14rc1
release-1.4.17
release-1.4.17rc1
release-1.4.18rc1
release-1.4.18rc2
release-1.4.19
release-1.4.19rc1
release-1.4.2
release-1.4.20
release-1.4.22
release-1.4.22rc1
release-1.4.3
release-1.4.4
release-1.4.4rc1
release-1.4.5
release-1.4.5rc1
release-1.4.6
release-1.4.6rc1
release-1.4.7
release-1.4.7rc1
release-1.4.8rc1
release-1.4.9
release-1.4.9rc1
release-1.5.0rc1
release-1.5.1
release-1.5.10
release-1.5.10rc1
release-1.5.1rc1
release-1.5.1rc2
release-1.5.2
release-1.5.2rc1
release-1.5.3rc1
release-1.5.4
release-1.5.4rc1
release-1.5.5
release-1.5.5rc1
release-1.5.6
release-1.5.6rc1
release-1.5.7
release-1.5.8
release-1.5.8rc1
release-1.5.9rc1
release-1.6.0rc1
release-1.6.1rc1
release-1.6.1rc2
release-1.6.1rc3
release-1.6.2rc1
release-1.6.4rc1
release-1.6.4rc2
release-1.6.6rc1
release-1.6.6rc2
release-1.6.7
release-1.6.7rc1
release-1.7.0rc1
release-1.7.0rc2
release-1.7.0rc3
release-1.7.1rc1
release-1.7.2rc1
release-1.7.3rc1
release-1.8.0rc1
release-1.8.1rc1
release-1.8.2rc1
release-1.9.0rc1
release-1.9.1rc1
release-1.9.2
release-1.9.2rc1
release-1.9.2rc2
release-1.9.2rc3
release-1.9.3
release-1.9.3rc1
release-1.9.3rc2
release-1.9.4
release-1.9.6
release-1.9.6rc1