You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2026-42534
About this tag
CVE-2026-42534 is a medium-severity vulnerability in NLnet Labs Unbound versions up to 1.25.0, disclosed on May 20, 2026. It involves a bug in the resolver's jostle logic that can be exploited by repeated duplicate DNS queries, leading to degraded resolution performance. This affects Windows network administrators, homelab operators, and MSPs who run Unbound as part of their recursive DNS infrastructure. While not a remote-code-execution flaw, it highlights how availability bugs in DNS can cause sluggish name resolution. The tag covers discussions on the vulnerability's impact, mitigation, and the importance of patching Unbound to maintain reliable DNS performance in Windows environments.
CVE-2026-42534 is a medium-severity vulnerability disclosed on May 20, 2026, in NLnet Labs Unbound versions up to and including 1.25.0, where repeated duplicate DNS queries can bypass the resolver’s jostle logic and degrade resolution performance for clients relying on it as recursive DNS...