Candidate: CVE-2009-3602
PublicDate: 2009-10-13 10:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3602
Description:
 Unbound before 1.3.4 does not properly verify signatures for NSEC3 records,
 which allows remote attackers to cause secure delegations to be downgraded
 via DNS spoofing or other DNS-related attacks in conjunction with crafted
 delegation responses.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_unbound:
upstream_unbound: released (1.3.4-1)
dapper_unbound: DNE
hardy_unbound: DNE
intrepid_unbound: needs-triage (reached end-of-life)
jaunty_unbound: ignored (reached end-of-life)
karmic_unbound: not-affected (1.3.4-1ubuntu2)
lucid_unbound: not-affected
maverick_unbound: not-affected
devel_unbound: not-affected