CVE-2009-3602

Priority
Description
Unbound before 1.3.4 does not properly verify signatures for NSEC3 records,
which allows remote attackers to cause secure delegations to be downgraded
via DNS spoofing or other DNS-related attacks in conjunction with crafted
delegation responses.
Notes
Package
Upstream:released (1.3.4-1)
More Information

Updated: 2020-09-10 01:32:28 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)