ALSA-2022:8062

[ALSA-2022:8062] Moderate: unbound security, bug fix, and enhancement update

Type:

security

Severity:

moderate

Release date:

2022-11-18

Description:

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. 

The following packages have been upgraded to a later upstream version: unbound (1.16.2). (BZ#2087120)

Security Fix(es):

* unbound: novel ghost domain attack that allows attackers to trigger continued resolvability of malicious domain names (CVE-2022-30698)
* unbound: novel ghost domain attack that allows attackers to trigger continued resolvability of malicious domain names (CVE-2022-30699)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	unbound-devel-1.16.2-2.el9.aarch64.rpm	15832725c65683e48d200773d774e33b31ed6bea28fec80f1356b01a20d2d5fd
aarch64	unbound-1.16.2-2.el9.aarch64.rpm	2ec49c9cb70da4dc7088c630caa2653e85d80e2d8b2b69085ae15241a3cdbbbb
aarch64	unbound-libs-1.16.2-2.el9.aarch64.rpm	5efdfa1b20740a6f99fb88fc58d635224179173c24cf5ed5c28c8c089c4e47d6
aarch64	python3-unbound-1.16.2-2.el9.aarch64.rpm	942465aa36d658403876636277cc8c8ce1bca750d26b446189e1a40681b3a56a
i686	unbound-devel-1.16.2-2.el9.i686.rpm	6469e0f04451e671f3a4712c51b66d430dd48492de66063384e25caa2101f8c0
i686	unbound-libs-1.16.2-2.el9.i686.rpm	8b7ef8c88e5a4bcd778a165404a4a7234544fdd1d452dd341322836be1db6632
ppc64le	unbound-devel-1.16.2-2.el9.ppc64le.rpm	15d6faa01d27d57325f7175dbe2b4c178a40faa1ff145145efcf6d7cf981a6cf
ppc64le	unbound-1.16.2-2.el9.ppc64le.rpm	7f000a48f3a2a2d2334d6ddb2a0686851c018808cb9838b6a620aed65a5ade6a
ppc64le	python3-unbound-1.16.2-2.el9.ppc64le.rpm	9bf5e96f0f8c8c50954a27a420d8852e0677b933261108d308d1b8d9f84b3150
ppc64le	unbound-libs-1.16.2-2.el9.ppc64le.rpm	ff6ae4461ddd3082713391d340a1f046f19a077c97d837340cceb837dd98731f
s390x	unbound-libs-1.16.2-2.el9.s390x.rpm	3378f320e1bd655154e791c66195875b4e233cf60a86d5c2a1e457a84fc131fd
s390x	unbound-devel-1.16.2-2.el9.s390x.rpm	44bef07e3eb38e96c8704542c2089e759ad2ee1e3043c615c285747500697b0e
s390x	python3-unbound-1.16.2-2.el9.s390x.rpm	91a5fe94ded1e270b42efa67bcbfb3e28b87ac8a8cea6bddc9275b41d429f489
s390x	unbound-1.16.2-2.el9.s390x.rpm	f11ec3ec722346cb8101a6f79748c2088e9cfccaa3b6b7bc18f75c3aeaff74aa
x86_64	python3-unbound-1.16.2-2.el9.x86_64.rpm	568d43871557889acb78c2b7b3d441cb4a663e95d06186e6ad6a7f5b80429eaa
x86_64	unbound-libs-1.16.2-2.el9.x86_64.rpm	81028273f1fb4a72e23cf051e776b150dc10dbcea85c107376e1887a8ea05d82
x86_64	unbound-devel-1.16.2-2.el9.x86_64.rpm	9c682e9f670e4531a57296d171cc7f71dc16a4c004024e8e8bf55de0524245db
x86_64	unbound-1.16.2-2.el9.x86_64.rpm	c641d75900cc79129dabd175d6bc95e98084073a29c5c132739aaec7b45fd05d

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.