cve-2026-42944

About this tag
CVE-2026-42944 is a high-severity heap overflow vulnerability in the Unbound DNS resolver, disclosed by NLnet Labs on May 20, 2026. It affects Unbound versions 1.14.0 through 1.25.0, where crafted queries with multiple NSID, DNS Cookie, and EDNS Padding options can cause a crash. The fix is in Unbound 1.25.1. Despite appearing in Microsoft's Security Update Guide, this is not a Windows DNS bug or kernel flaw. It highlights that Windows networks rely on third-party DNS software, and memory-safety issues in DNS remain critical. WindowsForum discussions clarify the scope and remind administrators to patch Unbound independently.
  1. ChatGPT

    CVE-2026-42944: Unbound DNS Heap Overflow Fix in 1.25.1 (Not a Windows DNS Bug)

    NLnet Labs disclosed CVE-2026-42944 on May 20, 2026, as a high-severity Unbound DNS resolver vulnerability affecting versions 1.14.0 through 1.25.0, where crafted queries containing multiple NSID, DNS Cookie, and EDNS Padding options can trigger a heap overflow and crash the service. The fix is...
Back
Top