ALSA-2026:24369

[ALSA-2026:24369] Important: unbound security update

Type:

security

Severity:

important

Release date:

2026-06-11

Description:

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver.   

Security Fix(es):  

  * unbound: Heap overflow and crash with multiple nsid, cookie, padding EDNS options (CVE-2026-42944)
  * unbound: Unbound DNSSEC Validator Denial of Service via Incorrect Write Offset Counter in Chase-Reply Messages (CVE-2026-42959)
  * unbound: Unbound DNSSEC Validator Use-After-Free via Deep Copy Pointer Overwrite Leading to DoS and Possible Remote Code Execution (CVE-2026-33278)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	python3-unbound-1.24.2-3.el9_8.1.aarch64.rpm	781c8abb1ebbe7e53b196a92c09da602ae506eee303a19912497d8d1dbd162fc
aarch64	unbound-libs-1.24.2-3.el9_8.1.aarch64.rpm	887bd7ebe80cc6efaed4693046f4b4095871d92307029085ba9f9a1bf7833480
aarch64	unbound-devel-1.24.2-3.el9_8.1.aarch64.rpm	89e783b053c4c710bc0b24d39f8e234630a33e67f4c6e14c5d29b13e79c0ed89
aarch64	unbound-1.24.2-3.el9_8.1.aarch64.rpm	9e054289cbe995c66a2fa72343ebbe74aab59a86d086ca08f8c86bed6ec720da
aarch64	unbound-dracut-1.24.2-3.el9_8.1.aarch64.rpm	de58ac55d6ceabad13e1131b1fd493e5ea3dcf0b014091e3a23cb4bde08418d3
i686	unbound-libs-1.24.2-3.el9_8.1.i686.rpm	22138ffb77930a8c5ca873589e61d36f34aac1c120e67ebae0f87dff4863c321
i686	unbound-devel-1.24.2-3.el9_8.1.i686.rpm	3da1264d0032751dff287ccf29f26bc43a98e97377472e666de82ce4c2b29459
ppc64le	unbound-1.24.2-3.el9_8.1.ppc64le.rpm	2e686775688f5cb90c56a2dc727821f938e1d6614ea9a50d83f98d824d4d05d6
ppc64le	unbound-libs-1.24.2-3.el9_8.1.ppc64le.rpm	38f3a6d7b4808c66fda32fbaf0ea81a35ddaee141862215c578cc12cbf7788a6
ppc64le	unbound-devel-1.24.2-3.el9_8.1.ppc64le.rpm	66da079f7988d38fd89dd23b2db23e712f7788737120e57219d64520fdc2c2da
ppc64le	unbound-dracut-1.24.2-3.el9_8.1.ppc64le.rpm	ce5672f912b6eb8bfd43cc720637f2dc3bec23c007615c743d410d594660262d
ppc64le	python3-unbound-1.24.2-3.el9_8.1.ppc64le.rpm	d3dc33d31ece6ce2a3e404a64cbb0cc936beb75ae31e3e937a4d92c51154f45b
s390x	unbound-devel-1.24.2-3.el9_8.1.s390x.rpm	1a33c0bc6421ad6f2bec6d70d8aff27c112ce9a9e4fc3d0a212bb700f0e5199a
s390x	unbound-dracut-1.24.2-3.el9_8.1.s390x.rpm	2a4d26b02429e61d5cf2b716715238dbb67f199deb7333bd2cefff445b1ac7c9
s390x	unbound-libs-1.24.2-3.el9_8.1.s390x.rpm	a4689d9536f82fe22c822522a0890f37f1677a2beaf64a2f2a7bd809608a75f5
s390x	unbound-1.24.2-3.el9_8.1.s390x.rpm	f111418c893b952d44c6c874176dc19cea4c69c69e2a3c4ed481169d44441204
s390x	python3-unbound-1.24.2-3.el9_8.1.s390x.rpm	f2cce6fdb5e2331a25466b271f8c80c1d51b29f6100a7dede58f8d064bdd0be8
x86_64	unbound-libs-1.24.2-3.el9_8.1.x86_64.rpm	2f1b1456334de6232f773a253cce790f003a365b6f450ef5fa999fdad3ac6716
x86_64	unbound-dracut-1.24.2-3.el9_8.1.x86_64.rpm	360a86ecb10b6463aa5205ba4c534d51168eacf4803667a56957a75fded04fe9
x86_64	python3-unbound-1.24.2-3.el9_8.1.x86_64.rpm	48d660a8d1fddbdd4a7f5b476c868343eac3d69de9f5e5a98d74378d7aa1ed37
x86_64	unbound-devel-1.24.2-3.el9_8.1.x86_64.rpm	872dbc55b9105a16a5877502a736a52a97468b8e069cad37215286199c3f4b8f
x86_64	unbound-1.24.2-3.el9_8.1.x86_64.rpm	ba9c6755106e891076ea22cdee5219c4ceef8720cc0a2b906f9661eaedc6bf0f

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.