Vulnerability Database

300,445

Total vulnerabilities in the database

CVE-2011-4528

Unbound before 1.4.13p2 attempts to free unallocated memory during processing of duplicate CNAME records in a signed zone, which allows remote DNS servers to cause a denial of service (daemon crash) via a crafted response.

  • Published: Dec 20, 2011
  • Updated: Nov 9, 2025
  • CVE: CVE-2011-4528
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:N/A:P

CWEs:

Software From Fixed in
unbound / unbound 1.3.3 1.3.3.x
unbound / unbound - 1.4.13.x
unbound / unbound 0.7 0.7.x
unbound / unbound 0.0 0.0.x
unbound / unbound 0.6 0.6.x
unbound / unbound 0.4 0.4.x
unbound / unbound 0.2 0.2.x
unbound / unbound 1.3.1 1.3.1.x
unbound / unbound 0.11 0.11.x
unbound / unbound 1.3.4 1.3.4.x
unbound / unbound 1.0.0 1.0.0.x
unbound / unbound 1.4.7 1.4.7.x
unbound / unbound 1.2.0 1.2.0.x
unbound / unbound 1.3.2 1.3.2.x
unbound / unbound 1.3.0 1.3.0.x
unbound / unbound 1.4.4 1.4.4.x
unbound / unbound 1.4.1 1.4.1.x
unbound / unbound 0.1 0.1.x
unbound / unbound 1.1.0 1.1.0.x
unbound / unbound 1.4.6 1.4.6.x
unbound / unbound 0.3 0.3.x
unbound / unbound 1.4.10 1.4.10.x
unbound / unbound 0.7.2 0.7.2.x
unbound / unbound 1.4.8 1.4.8.x
unbound / unbound 1.0.1 1.0.1.x
unbound / unbound 1.0.2 1.0.2.x
unbound / unbound 1.4.12 1.4.12.x
unbound / unbound 1.4.14-rc1 1.4.14-rc1.x
unbound / unbound 0.7.1 0.7.1.x
unbound / unbound 1.2.1 1.2.1.x
unbound / unbound 1.4.11 1.4.11.x
unbound / unbound 0.8 0.8.x
unbound / unbound 1.4.3 1.4.3.x
unbound / unbound 1.4.2 1.4.2.x
unbound / unbound 0.10 0.10.x
unbound / unbound 1.4.0 1.4.0.x
unbound / unbound 0.09 0.09.x
unbound / unbound 1.4.5 1.4.5.x
unbound / unbound 1.1.1 1.1.1.x
unbound / unbound 1.4.9 1.4.9.x
unbound / unbound 0.5 0.5.x