ALSA-2026:24365

[ALSA-2026:24365] Important: unbound security update

Type:

security

Severity:

important

Release date:

2026-06-08

Description:

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver.   

Security Fix(es):  

  * unbound: Heap overflow and crash with multiple nsid, cookie, padding EDNS options (CVE-2026-42944)
  * unbound: Unbound DNSSEC Validator Denial of Service via Incorrect Write Offset Counter in Chase-Reply Messages (CVE-2026-42959)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	python3-unbound-1.16.2-5.11.el8_10.aarch64.rpm	6d70c98b261859ea353fb29221a810d5f86a4335e458283c1ddd151182992a39
aarch64	unbound-1.16.2-5.11.el8_10.aarch64.rpm	8ee1251da245471365c637090279e561a6124070f49aed90b4c730db502a82c7
aarch64	unbound-devel-1.16.2-5.11.el8_10.aarch64.rpm	cd0334444ebf80a6fcb8664cef4719e027249949608489e4e23e42d70d073889
aarch64	unbound-libs-1.16.2-5.11.el8_10.aarch64.rpm	fba9eba6cd29aed986bd8da54b1f11809aeef353f67599c88b394fc4f10481ab
i686	unbound-libs-1.16.2-5.11.el8_10.i686.rpm	1d8710e27044d506b5d914fa802ad715e4adc658f96be8ecc393c68dd9d54183
i686	unbound-devel-1.16.2-5.11.el8_10.i686.rpm	60ed1c27b2135a17b83a710948440967236b2e2c150acd0a7014dbc69410b6a0
ppc64le	unbound-libs-1.16.2-5.11.el8_10.ppc64le.rpm	44ad5b8b8abe3ebaab3526e472eae2f73569137f9c83e5ca55c9c68e52510054
ppc64le	unbound-devel-1.16.2-5.11.el8_10.ppc64le.rpm	7a142e4ba2a4b90cf84d5c9fbd4000ca853b64894c759275d8fd4d1e6ce25eee
ppc64le	unbound-1.16.2-5.11.el8_10.ppc64le.rpm	b1ff8b9f74da63dd09b7d4b897c0161cdf73fc8e43260c32ba22ec2a03b175d0
ppc64le	python3-unbound-1.16.2-5.11.el8_10.ppc64le.rpm	f2a7a9a9207f753054c430be1b308b55efad4268b4bf01eac3bca20e4245ebb0
s390x	unbound-devel-1.16.2-5.11.el8_10.s390x.rpm	0972ea80e9fce9a63ced3963c46e8ec7d66dd3f7903fbded8b1eb0d6288704f4
s390x	python3-unbound-1.16.2-5.11.el8_10.s390x.rpm	0d4f77af05f29d6197e95f51d0258a7dca4315f0cb84b2efde4911dcaaaa7419
s390x	unbound-libs-1.16.2-5.11.el8_10.s390x.rpm	2bf6c7091938ef562ba1b9b7d3462f6d617e44a00dd68e2a9223d58da6932fcb
s390x	unbound-1.16.2-5.11.el8_10.s390x.rpm	7c112a4c00b953ec8b2ed14443706c48904085a3b9268a0484d6962c5862fb4a
x86_64	unbound-1.16.2-5.11.el8_10.x86_64.rpm	658d57e865cc1680b22c40a5addc16af4f7af0f35fb12717a6a42b563a2e7cf7
x86_64	python3-unbound-1.16.2-5.11.el8_10.x86_64.rpm	750e2731bcd1d988143f19216b0ed45f2a79b4aff435fb6846100c15ada4daea
x86_64	unbound-libs-1.16.2-5.11.el8_10.x86_64.rpm	8649630d96de24873118ced6bd6a09bac4c6520671a8c1cf14f1d4a3911cbbfa
x86_64	unbound-devel-1.16.2-5.11.el8_10.x86_64.rpm	9071b33e46759dff2bfa50f710703bf827f9a8001f2cee8cc33926721023c365

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.