ALSA-2024:0977

[ALSA-2024:0977] Important: unbound security update

Type:

security

Severity:

important

Release date:

2024-02-28

Description:

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. 

Security Fix(es):

* bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387)
* bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	python3-unbound-1.16.2-3.el9_3.1.aarch64.rpm	7f1b46c25c8a7f3fda1a956be9997012d8c213ae96e13d2567dba1d2b5dc5fff
aarch64	unbound-libs-1.16.2-3.el9_3.1.aarch64.rpm	8b05c70f86fdc35c820681d2b19c00a5fc2df86f3ff51f73d177449470a6c564
aarch64	unbound-devel-1.16.2-3.el9_3.1.aarch64.rpm	93af7ac764127ea9813f25768399594c936e68b667c6b12182d389d93987e5c6
aarch64	unbound-1.16.2-3.el9_3.1.aarch64.rpm	e4b591f055c080fab9bb10ac054bfbef467f34373cdebeac860ee0914af0ae53
i686	unbound-devel-1.16.2-3.el9_3.1.i686.rpm	373a9fcdd64438cb6103b47a283325d1dd447100bf35db9ade4e45d9f786693d
i686	unbound-libs-1.16.2-3.el9_3.1.i686.rpm	700c95d3bfd740faaf48e8ab7861e396a0ddefaebaeee5f818c6924d54b247ae
ppc64le	python3-unbound-1.16.2-3.el9_3.1.ppc64le.rpm	0eaa678cd9c035fae01711d717454c196af38047f705a8bbd63fca38ce56b503
ppc64le	unbound-devel-1.16.2-3.el9_3.1.ppc64le.rpm	2051a4929e0a234d6c032ab426046565240c59476837e81cf8467c26ad1d15b4
ppc64le	unbound-1.16.2-3.el9_3.1.ppc64le.rpm	316da95a55137f76f71a469f60628a66a83d44269d85ee7f9383ebb1370393d5
ppc64le	unbound-libs-1.16.2-3.el9_3.1.ppc64le.rpm	bfb1af0f1a5ffe74c082912402f47cbbd73125a0de9112988e5fdd9b51115579
s390x	python3-unbound-1.16.2-3.el9_3.1.s390x.rpm	a0c257c029784c7165fc349afd7141d4258af018917623cc59bccde68f0d1585
s390x	unbound-devel-1.16.2-3.el9_3.1.s390x.rpm	a7b8df736afa4509b06004c3d2091edfeddd2e9311fdbe8c8a028399a332b1b8
s390x	unbound-1.16.2-3.el9_3.1.s390x.rpm	d24d48e87b96294936054f2a10e71f79a1c3de3a25a40e7bf78cb2ad334cedfa
s390x	unbound-libs-1.16.2-3.el9_3.1.s390x.rpm	e2358731ae118187900ec1ced92462974301ee1c4f3179400aaf259771930835
x86_64	unbound-1.16.2-3.el9_3.1.x86_64.rpm	7c1e7442c37287de8fe0539c8ee6e0d9b8e4064240929338b17d438e7175632f
x86_64	unbound-libs-1.16.2-3.el9_3.1.x86_64.rpm	b5ab5f7f866e68d1246247f5ef1f21e83bd02f5a1efa38c6baf8058d40897e5b
x86_64	python3-unbound-1.16.2-3.el9_3.1.x86_64.rpm	d95c8293979254e9da239b63dc9b7fa77b6629ee4e742a77616f25e5887783fb
x86_64	unbound-devel-1.16.2-3.el9_3.1.x86_64.rpm	e01443e46fc6d387fcf8b6a86d051f12cccea7b364c903cbeec393decb973aa3

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.