Package "unbound"

Name:	unbound
Description:	validating, recursive, caching DNS resolver
Latest version:	1.17.1-2ubuntu0.2
Release:	mantic (23.10)
Level:	updates
Repository:	universe
Homepage:	https://www.unbound.net/

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "unbound"

32-bit deb package

64-bit deb package

APT INSTALL

Other versions of "unbound" in Mantic

Repository	Area	Version
base	main	1.17.1-2
base	universe	1.17.1-2
security	main	1.17.1-2ubuntu0.2
security	universe	1.17.1-2ubuntu0.2
updates	main	1.17.1-2ubuntu0.2

Packages in group

Deleted packages are displayed in grey.

Changelog

Version: 1.17.1-2ubuntu0.2 2024-05-28 15:07:14 UTC

Version: 1.17.1-2ubuntu0.2	2024-05-28 15:07:14 UTC
unbound (1.17.1-2ubuntu0.2) mantic-security; urgency=medium * SECURITY UPDATE: Unbound could be used to take part in a DoS attack - debian/patches/CVE-2024-33655.patch: fix for the DNSBomb vulnerability in doc/example.conf.in, doc/unbound.conf.5.in, services/cache/infra.c, services/cache/infra.h, services/mesh.c, testdata/*, util/config_file.c, util/config_file.h, util/configlexer.lex, util/configparser.y. - CVE-2024-33655 -- Marc Deslauriers <email address hidden> Wed, 15 May 2024 12:15:41 +0200
Source diff to previous version

unbound (1.17.1-2ubuntu0.2) mantic-security; urgency=medium * SECURITY UPDATE: Unbound could be used to take part in a DoS attack - debian/patches/CVE-2024-33655.patch: fix for the DNSBomb vulnerability in doc/example.conf.in, doc/unbound.conf.5.in, services/cache/infra.c, services/cache/infra.h, services/mesh.c, testdata/*, util/config_file.c, util/config_file.h, util/configlexer.lex, util/configparser.y. - CVE-2024-33655 -- Marc Deslauriers <email address hidden> Wed, 15 May 2024 12:15:41 +0200

Source diff to previous version

Version: 1.17.1-2ubuntu0.1 2024-02-28 16:07:01 UTC

unbound (1.17.1-2ubuntu0.1) mantic-security; urgency=medium * SECURITY UPDATE: Denial of service issues via DNSSEC responses - debian/patches/CVE-2023-50387_CVE-2023-50868_1.16.1-1.17.1.patch: patch obtained from Debian's 1.17.1-2+deb12u2 package, thanks to Salvatore Bonaccorso. - CVE-2023-50387 - CVE-2023-50868 -- Marc Deslauriers <email address hidden> Tue, 27 Feb 2024 16:48:33 -0500

CVE-2023-50387	Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU
CVE-2023-50868	The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of se

About - Send Feedback to @ubuntu_updates

Package "unbound"

Links

Download "unbound"

Other versions of "unbound" in Mantic

Packages in group

Changelog

Share this page

Bookmarks

Latest updates

proposed

updates

PPA updates