UbuntuUpdates.org

Package "unbound"

Name: unbound

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • static library, header files, and docs for libunbound
  • library implementing DNS resolution and validation

Latest version: 1.20.0-1ubuntu2.1
Release: oracular (24.10)
Level: security
Repository: main

Links



Other versions of "unbound" in Oracular

Repository Area Version
base universe 1.20.0-1ubuntu2
base main 1.20.0-1ubuntu2
security universe 1.20.0-1ubuntu2.1
updates main 1.20.0-1ubuntu2.1
updates universe 1.20.0-1ubuntu2.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1.20.0-1ubuntu2.1 2024-10-22 11:07:03 UTC

  unbound (1.20.0-1ubuntu2.1) oracular-security; urgency=medium

  * SECURITY UPDATE: denial of service via large RRsets compression
    - debian/patches/CVE-2024-8508.patch: limit name compression
      calculations per packet to avoid CPU lockup in util/data/msgencode.c
    - CVE-2024-8508

 -- Vyom Yadav <email address hidden> Thu, 17 Oct 2024 11:09:49 +0530

CVE-2024-8508 NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling replies with very large RRsets that it needs to perform



About   -   Send Feedback to @ubuntu_updates